Lucene search

[email protected]CVE-2010-3615

HistoryDec 06, 2010 - 1:44 p.m.

CVE-2010-3615

2010-12-0613:44:00

CWE-264

[email protected]

web.nvd.nist.gov

262

In Wild

cve-2010-3615

isc

bind

security vulnerability

dns

acl

nvd

9.1 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.024 Low

EPSS

Percentile

89.9%

JSON

named in ISC BIND 9.7.2-P2 does not check all intended locations for allow-query ACLs, which might allow remote attackers to make successful requests for private DNS records via the standard DNS query mechanism.

CPENameOperatorVersion
isc:bindisc bindeq9.7.2

CPE	Name	Operator	Version
isc:bind	isc bind	eq	9.7.2

References

lists.fedoraproject.org/pipermail/package-announce/2010-December/051963.html

osvdb.org/69568

secunia.com/advisories/42458

secunia.com/advisories/42671

securitytracker.com/id?1024817

slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.622190

www.isc.org/announcement/guidance-regarding-dec-1st-2010-security-advisories

www.isc.org/software/bind/advisories/cve-2010-3615

www.kb.cert.org/vuls/id/510208

www.securityfocus.com/bid/45134

www.vupen.com/english/advisories/2010/3102

Social References

9.1 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.024 Low

EPSS

Percentile

89.9%

JSON

Related for CVE-2010-3615

f52 prion1 openvas7 debiancve1 ubuntucve1 cert1 nessus5 slackware1 cisa1 fedora1 nmap1 gentoo1