You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
ghost domain names
About this tag
Ghost domain names refer to DNS records that continue to resolve even after they have been officially revoked or deleted. This tag covers discussions around the Unbound CVE-2026-40622 vulnerability, which affects DNS resolver versions 1.16.2 through 1.25.0 and can cause ghost domains to persist in cache under specific conditions. While not a Windows-specific flaw, the issue is relevant to Windows networks because DNS is a critical dependency for enterprise environments. Topics include cache correctness, DNS security, and the practical implications of revoked domains remaining accessible. The tag is useful for IT professionals managing DNS infrastructure and seeking to understand how to mitigate ghost domain risks.
NLnet Labs disclosed CVE-2026-40622 on May 20, 2026, as a medium-severity flaw in Unbound versions 1.16.2 through 1.25.0 that can extend the life of revoked “ghost” domain names in resolver cache under specific attacker-controlled DNS conditions. The bug is not a Microsoft Windows vulnerability...