Moxa has studied a report by JSOF research labs that disclosed a set of vulnerabilities (known as ‘DNSpooq’) in dnsmasq. There are two types of DNSpooq vulnerabilities: buffer overflow and DNS response validation issues. Buffer overflow (CVE-2020-25681, CVE-2020-25682, CVE-2020-25683 and CVE-2020-25687) might lead to remote code execution and DoS attacks; and DNS response validation issues (CVE-2020-25684, CVE-2020-25685, and CVE-2020-25686) are vulnerable to DNS cache poisoning.
Moxa has investigated the vulnerabilities and has determined that the vulnerabilities affect AWK-3131A/4131A/1137C/1131A Series. In response to this, Moxa has developed related solutions to address these vulnerabilities.