all InfoSec news
SSA-705111 V1.2 (Last Update: 2022-01-11): Multiple Vulnerabilities (NAME:WRECK) in the DNS Module of Nucleus RTOS
Siemens ProductCERT Security Advisories cert-portal.siemens.com
Security researchers discovered and disclosed 9 vulnerabilities in several DNS implementations, also known as “NAME:WRECK” vulnerabilities. The vulnerabilities described in this advisory are from this set.
The DNS client of affected products contains multiple vulnerabilities related to the handling of DNS responses and requests. The most severe could allow an attacker to manipulate the DNS responses and cause a denial-of-service condition.
Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific …
advisory client dns dns client handling name nucleus products requests researchers rtos security security researchers ssa update vulnerabilities