Lucene search
K

1440 matches found

Prion
Prion
added 2012/07/25 10:42 a.m.30 views

Design/Logic Flaw

ISC BIND 9.4.x, 9.5.x, 9.6.x, and 9.7.x before 9.7.6-P2; 9.8.x before 9.8.3-P2; 9.9.x before 9.9.1-P2; and 9.6-ESV before 9.6-ESV-R7-P2, when DNSSEC validation is enabled, does not properly initialize the failing-query cache, which allows remote attackers to cause a denial of service assertion...

7.8CVSS7AI score0.27383EPSS
Exploits1References12Affected Software1
Prion
Prion
added 2012/07/25 10:42 a.m.19 views

Race condition

Race condition in the nsclient structure management in ISC BIND 9.9.x before 9.9.1-P2 allows remote attackers to cause a denial of service memory consumption or process exit via a large volume of TCP queries...

4.3CVSS6.9AI score0.02722EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2012/07/25 10:0 a.m.29 views

CVE-2012-3868

Race condition in the nsclient structure management in ISC BIND 9.9.x before 9.9.1-P2 allows remote attackers to cause a denial of service memory consumption or process exit via a large volume of TCP queries...

6.2AI score0.02722EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2012/07/25 10:0 a.m.33 views

CVE-2012-3817

ISC BIND 9.4.x, 9.5.x, 9.6.x, and 9.7.x before 9.7.6-P2; 9.8.x before 9.8.3-P2; 9.9.x before 9.9.1-P2; and 9.6-ESV before 9.6-ESV-R7-P2, when DNSSEC validation is enabled, does not properly initialize the failing-query cache, which allows remote attackers to cause a denial of service assertion...

7.8CVSS7.1AI score0.27383EPSS
Exploits1
CVE
CVE
added 2012/07/25 10:0 a.m.415 views

CVE-2012-3817

CVE-2012-3817 affects BIND when DNSSEC validation is enabled. Under high query load, BIND could use data from the failing-query cache before it is fully initialized, causing an assertion failure and resulting in a denial of service (remote crash of named). Affected ranges include various 9.4.x–9....

7.8CVSS8.1AI score0.27383EPSS
Exploits1References12Affected Software1
Cvelist
Cvelist
added 2012/07/25 10:0 a.m.19 views

CVE-2012-3817

ISC BIND 9.4.x, 9.5.x, 9.6.x, and 9.7.x before 9.7.6-P2; 9.8.x before 9.8.3-P2; 9.9.x before 9.9.1-P2; and 9.6-ESV before 9.6-ESV-R7-P2, when DNSSEC validation is enabled, does not properly initialize the failing-query cache, which allows remote attackers to cause a denial of service assertion...

8.3AI score0.27383EPSS
Exploits1References12
CVE
CVE
added 2012/07/25 10:0 a.m.89 views

CVE-2012-3868

CVE-2012-3868 concerns ISC BIND 9.9.x prior to 9.9.1-P2, where a race condition in ns_client structure management can be exploited by a high volume of TCP queries to cause a denial of service (memory consumption or process exit). The description specifies the underlying cause as a race condition ...

4.3CVSS6.4AI score0.02722EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2012/07/25 10:0 a.m.39 views

CVE-2012-3868

Race condition in the nsclient structure management in ISC BIND 9.9.x before 9.9.1-P2 allows remote attackers to cause a denial of service memory consumption or process exit via a large volume of TCP queries...

4.3CVSS7.3AI score0.02722EPSS
Exploits0
seebug.org
seebug.org
added 2012/07/25 12:0 a.m.836 views

ISC BIND 9 DNSSEC验证远程拒绝服务漏洞

BUGTRAQ ID: 54658 CVE ID: CVE-2012-3817 BIND是一个应用非常广泛的DNS协议的实现,由ISC负责维护,具体的开发由Nominum公司完成。 BIND 9.6-ESV-R1至9.6-ESV-R7-P1、BIND 9.7.1至9.7.6-P1、BIND 9.8.0至9.8.3-P1、BIND 9.9.0至9.9.1-P1版本在实现上存在远程拒绝服务漏洞,攻击者可利用此漏洞造成指定进程中的断言失败,拒绝服务合法用户,也可能泄露某些内存信息到客户端 0 ISC BIND BIND 9.9.0 - 9.9.1-P1 ISC BIND BIND 9.8.0 ...

7.8CVSS8.6AI score0.27383EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2012/07/25 12:0 a.m.28 views

CVE-2012-3817

ISC BIND 9.4.x, 9.5.x, 9.6.x, and 9.7.x before 9.7.6-P2; 9.8.x before 9.8.3-P2; 9.9.x before 9.9.1-P2; and 9.6-ESV before 9.6-ESV-R7-P2, when DNSSEC validation is enabled, does not properly initialize the failing-query cache, which allows remote attackers to cause a denial of service assertion...

7.8CVSS6.9AI score0.27383EPSS
Exploits1References3
securityvulns
securityvulns
added 2012/06/13 12:0 a.m.60 views

ISC bind DoS

Crash on zero length RADTA processing...

8.5CVSS1.9AI score0.13405EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2012/06/11 12:0 a.m.25 views

Mandriva Linux Security Advisory : bind (MDVSA-2012:089)

A vulnerability was discovered and corrected in bind : ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1, 9.9.x before 9.9.1-P1, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P1 does not properly handle resource records with a zero-length RDATA section, which allows remote DNS servers to cause a...

8.5CVSS6.7AI score0.13405EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2012/06/11 12:0 a.m.63 views

ISC BIND 9 Zero-Length RDATA Section Denial of Service / Information Disclosure

According to its self-reported version number, the remote installation of BIND does not properly handle resource records with a zero-length RDATA section, which may lead to unexpected outcomes, such as crashes of the affected server, disclosure of portions of memory, corrupted zone data, or other...

8.5CVSS6.8AI score0.13405EPSS
Exploits1References7
NVD
NVD
added 2012/06/05 4:55 p.m.28 views

CVE-2012-1667

ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1, 9.9.x before 9.9.1-P1, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P1 does not properly handle resource records with a zero-length RDATA section, which allows remote DNS servers to cause a denial of service daemon crash or data corruption or obta...

8.5CVSS8.4AI score0.13405EPSS
Exploits1References16
OSV
OSV
added 2012/06/05 4:55 p.m.10 views

CVE-2012-1667

ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1, 9.9.x before 9.9.1-P1, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P1 does not properly handle resource records with a zero-length RDATA section, which allows remote DNS servers to cause a denial of service daemon crash or data corruption or obta...

8.5CVSS6.4AI score0.13405EPSS
Exploits1References16
Prion
Prion
added 2012/06/05 4:55 p.m.66 views

Memory corruption

ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1, 9.9.x before 9.9.1-P1, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P1 does not properly handle resource records with a zero-length RDATA section, which allows remote DNS servers to cause a denial of service daemon crash or data corruption or obta...

8.5CVSS7AI score0.13405EPSS
Exploits1References16Affected Software1
Cvelist
Cvelist
added 2012/06/05 4:0 p.m.37 views

CVE-2012-1667

ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1, 9.9.x before 9.9.1-P1, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P1 does not properly handle resource records with a zero-length RDATA section, which allows remote DNS servers to cause a denial of service daemon crash or data corruption or obta...

8.4AI score0.13405EPSS
Exploits1References16
CVE
CVE
added 2012/06/05 4:0 p.m.3508 views

CVE-2012-1667

CVE-2012-1667 affects ISC BIND 9.x before patched releases (examples: 9.7.6-P1, 9.8.3-P1, 9.9.1-P1; and 9.4-ESV/9.6-ESV before listed P1s). The vulnerability arises from improper handling of resource records with a zero-length RDATA, enabling remote DNS servers to trigger a DoS (daemon crash or d...

8.5CVSS8.3AI score0.13405EPSS
Exploits1References16Affected Software1
Debian CVE
Debian CVE
added 2012/06/05 4:0 p.m.42 views

CVE-2012-1667

ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1, 9.9.x before 9.9.1-P1, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P1 does not properly handle resource records with a zero-length RDATA section, which allows remote DNS servers to cause a denial of service daemon crash or data corruption or obta...

8.5CVSS7AI score0.13405EPSS
Exploits1
seebug.org
seebug.org
added 2012/06/05 12:0 a.m.1521 views

ISC BIND 9 DNS资源记录处理远程拒绝服务漏洞

BUGTRAQ ID: 53772 CVE ID: CVE-2012-1667 BIND是一个应用非常广泛的DNS协议的实现,由ISC负责维护,具体的开发由Nominum公司完成。 ISC BIND的下列版本9.0.x - 9.6.x, 9.4-ESV-9.4-ESV-R5-P1, 9.6-ESV-9.6-ESV-R7, 9.7.0-9.7.6, 9.8.0-9.8.3, 9.9.0-9.9.1在处理DNS资源记录时存在错误,可被利用通过包含零长度rdata的记录造成递归服务器崩溃或泄漏某些内存到客户端,导致敏感信息泄漏或拒绝服务。 0 ISC BIND 9.9.x ISC BIND...

8.5CVSS1.1AI score0.13405EPSS
Exploits1
Rows per page
Query Builder