Designing Reliable and Efficient Networks and Network Devices
In our new research, we present a severe complexity attack on DNS resolvers, where a single malicious query to a DNS resolver can significantly increase its CPU load. As a result of our research work, three common vulnerabilities and exposures (CVEs) were issued by BIND9, Unbound, and Knot resolver implementations.
https://nvd.nist.gov/vuln/detail/CVE-2022-2795, https://nvd.nist.gov/vuln/detail/CVE-2022-3204 , https://nvd.nist.gov/vuln/detail/CVE-2022-40188