Unbound DNS Server is prone to a DNS-spoofing vulnerability. Successful exploits allow remote attackers to spoof delegation responses so as to downgrade secure delegations to insecure status, which may aid in further attacks. Versions prior to Unbound 1.3.4 are vulnerable.

Updates are available. Please see the references for details.

• http://unbound.net/index.html
• http://unbound.net/pipermail/unbound-users/2009-October/000852.html
• http://www.securityfocus.com/bid/37459

---

Updated on 2015-03-25