Detailedseverity: LowStable

CAPEC-291DNS Zone Transfers

Abstraction
Detailed
Status
Stable
Severity
Low

Description

An attacker exploits a DNS misconfiguration that permits a ZONE transfer. Some external DNS servers will return a list of IP address and valid hostnames. Under certain conditions, it may even be possible to obtain Zone data about the organization's internal network. When successful the attacker learns valuable information about the topology of the target organization, including information about particular servers, their role within the IT structure, and possibly information about the operating systems running upon the network. This is configuration dependent behavior so it may also be required to search out multiple DNS servers while attempting to find one with ZONE transfers allowed.

Related weaknesses· 1

CWE-200

Related attack patterns· 1

CAPEC-309 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessExposure of Sensitive Information to an Unauthorized Actorcwe-200100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Enumerate Mail Exchange (MX) Records
CAPEC
DNS Rebinding
CAPEC
DNS Cache Poisoning
CAPEC
DNS Blocking
CAPEC
DNS Spoofing
CAPEC
Traceroute Route Enumeration
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.