Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2003-2018 Tenable Network Security, Inc.BIND9_OVERFLOW.NASL
HistoryMar 04, 2003 - 12:00 a.m.

ISC BIND < 9.2.2 DNS Resolver Functions Remote Overflow

2003-03-0400:00:00
This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.
www.tenable.com
28
JSON

The remote BIND 9 DNS server, according to its version number, is vulnerable to a buffer overflow which may allow an attacker to gain a shell on this host or to disable this server.

#
# (C) Tenable Network Security, Inc.
#

# Ref: 
# https://www.isc.org/downloads/bind/
# https://archive.cert.uni-stuttgart.de/bugtraq/2003/03/msg00075.html
# 

include("compat.inc");

if (description)
{
 script_id(11318);
 script_version ("1.26");
 script_cvs_date("Date: 2018/11/15 20:50:21");

 script_cve_id("CVE-2002-0684");
 script_xref(name:"CERT-CC", value:"CA-2002-19");
 script_xref(name:"CERT", value:"542971");

 script_name(english:"ISC BIND < 9.2.2 DNS Resolver Functions Remote Overflow");
 script_summary(english:"Checks the remote BIND version");
 
 script_set_attribute(attribute:"synopsis", value:
"It is possible to use the remote name server to break into the
remote host.");
 script_set_attribute(attribute:"description", value:
"The remote BIND 9 DNS server, according to its version number, is 
vulnerable to a buffer overflow which may allow an attacker to 
gain a shell on this host or to disable this server.");
 script_set_attribute(attribute:"solution", value:"Upgrade to BIND 9.2.2 or downgrade to the 8.x series");
 script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
 script_set_attribute(attribute:"see_also", value:"https://www.isc.org/downloads/bind/");
 script_set_attribute(attribute:"see_also", value:"https://archive.cert.uni-stuttgart.de/bugtraq/2003/03/msg00075.html");

 script_set_attribute(attribute:"vuln_publication_date", value:"2002/07/04");
 script_set_attribute(attribute:"plugin_publication_date", value:"2003/03/04");

 script_set_attribute(attribute:"plugin_type", value:"remote");
 script_set_attribute(attribute:"cpe", value:"cpe:/a:isc:bind");
 script_end_attributes();
 
 script_category(ACT_GATHER_INFO);
 script_copyright(english:"This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.");
 script_family(english: "DNS");
 script_dependencie("bind_version.nasl");
 script_require_keys("bind/version");
 exit(0);
}


vers = get_kb_item("bind/version");
if(!vers)exit(0);

if(ereg(string:vers, pattern:"^9\.[01]\..*"))
{
 security_hole(53);
 exit(0);
}

if(ereg(string:vers, pattern:"^9\.2\.([0-1][^0-9]*|2rc.*)$"))
{
 security_hole(53);
 exit(0);
}
VendorProductVersionCPE
iscbindcpe:/a:isc:bind

Related

debiancve 2
cvelist 2
nessus 3
cve 2
suse 1
cert 2
debiancve
debiancve
CVE-2002-0684
2002-08-12 04:00:00
CVE-2002-0029
2002-11-29 05:00:00
cvelist
cvelist
CVE-2002-0684
2002-07-31 04:00:00
CVE-2002-0029
2002-11-21 05:00:00
nessus
nessus
ISC BIND < 4.9.5 DNS Resolver Functions Remote Overflow
2003-04-03 00:00:00
Mandrake Linux Security Advisory : glibc (MDKSA-2002:050)
2004-07-31 00:00:00
RHEL 2.1 : glibc (RHSA-2002:167)
2004-07-06 00:00:00
cve
cve
CVE-2002-0684
2002-08-12 04:00:00
CVE-2002-0029
2002-11-29 05:00:00
suse
suse
buffer overflow in bind, glibc
2002-07-10 20:26:06
cert
cert
Multiple vendors' Domain Name System (DNS) stub resolvers vulnerable to buffer overflow via network name and address lookups
2002-08-01 00:00:00
Domain Name System (DNS) stub resolver libraries vulnerable to buffer overflows via network name or address lookups
2002-11-13 00:00:00
JSON
Related for BIND9_OVERFLOW.NASL
debiancve2cvelist2nessus3cve2suse1cert2