Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
certCERTVU:706148
HistoryDec 01, 2010 - 12:00 a.m.

ISC BIND cache vulnerability

2010-12-0100:00:00
www.kb.cert.org
16

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

0.014 Low

EPSS

Percentile

86.1%

JSON

Overview

The ISC BIND nameserver contains a vulnerability that could allow a remote attacker to cause a denial of service.

Description

According to ISC:

Adding certain types of signed negative responses to cache doesn’t clear any matching RRSIG records already in cache. A subsequent lookup of the cached data can cause named to crash (INSIST).

Impact

A remote attacker could cause the name server on an affected system to crash. ISC notes that this vulnerability affects recursive nameservers irrespective of whether DNSSEC validation is enabled or disabled.

Solution

**Apply an update

Users who obtain BIND from a third-party vendor, such as their operating system vendor, should see the vendor information portion of this document for a partial list of affected vendors. **
This vulnerability is addressed in ISC BIND versions 9.4-ESV-R4, 9.6.2-P3, 9.6-ESV-R3, and 9.7.2-P3. Users of BIND from the original source distribution should upgrade to one of these versions, as appropriate.

See also <https://www.isc.org/software/bind/advisories/cve-2010-3613&gt;

Vendor Information

706148

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

Internet Systems Consortium Affected

Updated: December 01, 2010

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References

CVSS Metrics

Group Score Vector
Base
Temporal
Environmental

References

Acknowledgements

Thanks to Internet Systems Consortium for reporting this vulnerability.

This document was written by Michael Orlando.

Other Information

CVE IDs: CVE-2010-3613
Severity Metric: 7.65 Date Public:

Related

openvas 35
nessus 27
oraclelinux 3
f5 2
debiancve 1
redhat 3
veracode 1
prion 1
cve 1
centos 2
ubuntucve 1
fedora 4
cert 1
ubuntu 1
securityvulns 5
debian 1
slackware 1
osv 1
cisa 1
vmware 2
gentoo 1
openvas
openvas
CentOS Update for bind CESA-2010:1000 centos4 x86_64
2012-07-30 00:00:00
RedHat Update for bind RHSA-2010:1000-01
2010-12-28 00:00:00
CentOS Update for bind CESA-2010:1000 centos4 x86_64
2012-07-30 00:00:00
nessus
nessus
CentOS 4 : bind (CESA-2010:1000)
2011-01-28 00:00:00
Scientific Linux Security Update : bind on SL4.x i386/x86_64
2012-08-01 00:00:00
RHEL 4 : bind (RHSA-2010:1000)
2010-12-21 00:00:00
oraclelinux
oraclelinux
bind security update
2010-12-20 00:00:00
bind security update
2011-02-10 00:00:00
bind security update
2010-12-13 00:00:00
f5
f5
K12851 : BIND vulnerability CVE-2010-3613
2013-09-11 00:00:00
SOL12851 - BIND vulnerability CVE-2010-3613
2011-05-13 00:00:00
debiancve
debiancve
CVE-2010-3613
2010-12-06 13:44:00
redhat
redhat
(RHSA-2010:1000) Important: bind security update
2010-12-20 00:00:00
(RHSA-2010:0975) Important: bind security update
2010-12-13 00:00:00
(RHSA-2010:0976) Important: bind security update
2010-12-13 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:51:03
prion
prion
Design/Logic Flaw
2010-12-06 13:44:00
cve
cve
CVE-2010-3613
2010-12-06 13:44:00
centos
centos
bind security update
2011-01-27 09:19:06
bind, caching security update
2010-12-14 01:18:10
ubuntucve
ubuntucve
CVE-2010-3613
2010-12-01 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: bind-dyndb-ldap-0.1.0-0.10.a1.20091210git.fc13
2010-12-07 20:10:13
[SECURITY] Fedora 13 Update: dnsperf-1.0.1.0-19.fc13
2010-12-07 20:10:14
[SECURITY] Fedora 14 Update: bind-9.7.2-4.P3.fc14
2010-12-08 21:39:24
cert
cert
ISC BIND named allow-query vulnerability
2010-12-01 00:00:00
ubuntu
ubuntu
Bind vulnerabilities
2010-12-01 00:00:00
securityvulns
securityvulns
bind named DNS server vulnerabilities
2010-12-06 00:00:00
[USN-1025-1] Bind vulnerabilities
2010-12-06 00:00:00
VMSA-2011-0004 VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm.
2011-03-10 00:00:00
debian
debian
[SECURITY] [DSA-2130-1] New BIND packages fix denial of service
2010-12-10 20:27:48
slackware
slackware
[slackware-security] bind
2010-12-16 21:45:59
osv
osv
bind9 - denial of service
2010-12-10 00:00:00
cisa
cisa
Internet Systems Consortium BIND Vulnerabilities
2010-12-02 00:00:00
vmware
vmware
VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm.
2011-03-07 00:00:00
VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm.
2011-03-07 00:00:00
gentoo
gentoo
BIND: Multiple vulnerabilities
2012-06-02 00:00:00

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

0.014 Low

EPSS

Percentile

86.1%

JSON
Related for VU:706148
openvas35nessus27oraclelinux3f52debiancve1redhat3veracode1prion1cve1centos2ubuntucve1fedora4cert1ubuntu1securityvulns5debian1slackware1osv1cisa1vmware2gentoo1