npm

Severity: critical

Command Injection

dns-sync

Overview

Affected versions of dns-sync are vulnerable to arbitrary command execution via maliciously formed hostnames.

Proof of Concept

    var dnsSync = require('dns-sync');
    console.log(dnsSync.resolve('$(id > /tmp/foo)'));

Remediation

Update to version 0.1.1 or later.

Resources

Have content suggestions? Send them to [email protected]

Advisory timeline

  1. published

    Advisory published
    Apr 11th, 2017
  2. reported

    Initial report by Steve Kemp
    Oct 27th, 2016