Lucene search

PRIOn knowledge basePRION:CVE-2010-3615

HistoryDec 06, 2010 - 1:44 p.m.

Design/Logic Flaw

2010-12-0613:44:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.024 Low

EPSS

Percentile

89.7%

JSON

named in ISC BIND 9.7.2-P2 does not check all intended locations for allow-query ACLs, which might allow remote attackers to make successful requests for private DNS records via the standard DNS query mechanism.

CPENameOperatorVersion
bindeq9.7.2 p2

CPE	Name	Operator	Version
	bind	eq	9.7.2 p2

References

osvdb.org/69568

secunia.com/advisories/42458

secunia.com/advisories/42671

securitytracker.com/id?1024817

slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.622190

www.isc.org/announcement/guidance-regarding-dec-1st-2010-security-advisories

www.isc.org/software/bind/advisories/cve-2010-3615

www.kb.cert.org/vuls/id/510208

www.securityfocus.com/bid/45134

www.vupen.com/english/advisories/2010/3102

lists.fedoraproject.org/pipermail/package-announce/2010-December/051963.html

7 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.024 Low

EPSS

Percentile

89.7%

JSON

Related for PRION:CVE-2010-3615