ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P5, 9.5 before 9.5.2-P2, 9.6 before 9.6.1-P3, and 9.7.0 beta handles out-of-bailiwick data accompanying a secure response without re-fetching from the original source, which allows remote attackers to have an unspecified impact via a crafted response, aka Bug 20819. NOTE: this vulnerability exists because of a regression during the fix for CVE-2009-4022.

References

secunia.com/advisories/40086

wiki.rpath.com/wiki/Advisories:rPSA-2010-0018

www.debian.org/security/2010/dsa-2054

www.vupen.com/english/advisories/2010/0622

www.vupen.com/english/advisories/2010/1352

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11753

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6665

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7086

www.isc.org/advisories/CVE-2009-4022v6

cvelist 3

f5 6

cve 3

nessus 44

nvd 3

ubuntucve 3

debiancve 3

securityvulns 6

openvas 56

centos 2

redhat 2

gentoo 1

oraclelinux 2

osv 2

debian 3

fedora 4

veracode 2

cert 1

prion 2

slackware 2

freebsd_advisory 1

suse 2

ubuntu 2

seebug 1

checkpoint_security 1

altlinux 4

vmware 4

cvelist

CVE-2010-0382

2010-01-22 21:20:00

CVE-2009-4022

2009-11-25 16:00:00

CVE-2010-0290

2010-01-22 21:20:00

K15787 : BIND vulnerability CVE-2010-0382

2014-11-03 00:00:00

SOL15787 - BIND vulnerability CVE-2010-0382

2014-11-03 00:00:00

SOL10898 - DNSSEC BIND vulnerability - CVE-2009-4022

2009-12-22 00:00:00

cve

CVE-2010-0382

2010-01-22 22:00:00

CVE-2009-4022

2009-11-25 16:30:00

CVE-2010-0290

2010-01-22 22:00:00

nessus

ISC BIND 9 DNSSEC Cache Poisoning

2009-12-02 00:00:00

F5 Networks BIG-IP : BIND vulnerability (SOL15787)

2014-11-04 00:00:00

CentOS 5 : bind (CESA-2010:0062)

2010-01-21 00:00:00

nvd

CVE-2010-0382

2010-01-22 22:00:00

CVE-2009-4022

2009-11-25 16:30:00

CVE-2010-0290

2010-01-22 22:00:00

ubuntucve

CVE-2010-0382

2010-01-22 00:00:00

CVE-2009-4022

2009-11-25 00:00:00

CVE-2010-0290

2010-01-19 00:00:00

debiancve

CVE-2010-0382

2010-01-22 22:00:00

CVE-2009-4022

2009-11-25 16:30:00

CVE-2010-0290

2010-01-22 22:00:00

securityvulns

bind DNS server cache poisoning

2010-03-17 00:00:00

rPSA-2010-0018-1 bind bind-utils caching-nameserver

2010-03-17 00:00:00

[ MDVSA-2009:304 ] bind

2009-12-01 00:00:00

openvas

HP-UX Update for BIND HPSBUX02546

2010-10-01 00:00:00

HP-UX Update for BIND HPSBUX02546

2010-10-01 00:00:00

Gentoo Security Advisory GLSA 201006-11 (BIND)

2011-03-09 00:00:00

centos

bind, caching security update

2010-01-20 17:59:57

bind, caching security update

2009-12-17 12:39:21

redhat

(RHSA-2010:0062) Moderate: bind security update

2010-01-20 00:00:00

(RHSA-2009:1620) Moderate: bind security update

2009-11-30 00:00:00

gentoo

BIND: Multiple vulnerabilities

2010-06-01 00:00:00

oraclelinux

bind security update

2010-01-20 00:00:00

bind security update

2009-11-30 00:00:00

osv

bind9 - cache poisoning

2009-12-23 00:00:00

bind9 - cache poisoning

2010-06-04 00:00:00

debian

[SECURITY] [DSA 1961-1] New bind9 packages fix cache poisoning

2009-12-23 07:07:33

[SECURITY] [DSA 2054-2] New bind9 packages fix cache poisoning

2010-06-15 20:05:57

[SECURITY] [DSA 2054-1] New bind9 packages fix cache poisoning

2010-06-04 19:22:30

fedora

[SECURITY] Fedora 12 Update: bind-9.6.1-13.P2.fc12

2009-11-27 21:43:51

[SECURITY] Fedora 11 Update: bind-9.6.1-7.P2.fc11

2009-11-27 21:40:17

[SECURITY] Fedora 12 Update: bind-9.6.1-15.P3.fc12

2010-01-21 00:14:47

veracode

Cache Poisoning Attack

2020-04-10 00:41:27

Cache Poisoning Attack

2020-04-10 00:41:38

cert

BIND DNS Nameserver, DNSSEC validation Vulnerability

2009-12-01 00:00:00

prion

Design/Logic Flaw

2009-11-25 16:30:00

Design/Logic Flaw

2010-01-22 22:00:00

slackware

bind

2009-12-02 17:30:47

[slackware-security] bind

2010-06-25 18:32:41

freebsd_advisory

FreeBSD-SA-10:01.bind

2010-01-06 00:00:00

suse

DNSSEC cache poisoning in bind

2009-12-02 11:21:35

remote code execution in acroread

2010-01-26 16:40:23

ubuntu

Bind vulnerability

2009-12-07 00:00:00

Bind vulnerabilities

2010-01-20 00:00:00

seebug

ISC BIND 9 DNSSEC查询响应远程缓存中毒漏洞

2009-11-27 00:00:00

checkpoint_security

Check Point response to vulnerability in ISC BIND (CVE-2009-4022) on UTM-1 Edge

2010-01-14 22:00:00

altlinux

Security fix for the ALT Linux 9 package bind version 9.3.6-alt7

2011-12-16 00:00:00

Security fix for the ALT Linux 7 package bind version 9.3.6-alt7

2011-12-16 00:00:00

Security fix for the ALT Linux 6 package bind version 9.3.6-alt7

2011-12-16 00:00:00

vmware

ESX Service Console and vMA third party updates

2010-03-03 00:00:00

ESX Service Console and vMA third party updates

2010-03-03 00:00:00

ESXi utilities and ESX Service Console third party updates

2010-05-27 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

AI Score

6.8

Confidence

Low

EPSS

0.04

Percentile

92.1%

JSON

Related for PRION:CVE-2010-0382