Miggo Logo

CVE-2015-5695: Designate mDNS DoS through incorrect handling of large RecordSets

6.5

CVSS Score
3.0

Basic Information

EPSS Score
0.84471%
Published
5/17/2022
Updated
11/26/2024
KEV Status
No
Technology
TechnologyPython

Technical Details

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
designatepip= 2015.1.0b2

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from two issues: (1) the mDNS handler's infinite loop when processing oversized RRSets (traced to _handle_axfr), and (2) missing quota enforcement in the central service. The patches explicitly modify _enforce_recordset_quota and _enforce_record_quota to add quota checks, confirming their role. The _handle_axfr method's loop logic (as described in bug reports and commit diffs) directly causes the DoS when quotas are bypassed.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

**si*n*t* ****.*.* t*rou** *.*.*.*** *s p**k**** in Op*nSt**k Kilo *o*s not *n*or** R**or*S*ts p*r *om*in, *n* R**or*s p*r R**or*S*t quot*s w**n pro**ssin* *n int*rn*l zon* *il* tr*ns**r, w*i** mi**t *llow r*mot* *tt**k*rs to **us* * **ni*l o* s*rvi*

Reasoning

T** vuln*r**ility st*ms *rom two issu*s: (*) t** m*NS **n*l*r's in*init* loop w**n pro**ssin* ov*rsiz** RRS*ts (tr**** to _**n*l*_*x*r), *n* (*) missin* quot* *n*or**m*nt in t** **ntr*l s*rvi**. T** p*t***s *xpli*itly mo*i*y _*n*or**_r**or*s*t_quot*