Lucene search
K

1440 matches found

Tenable Nessus
Tenable Nessus
added 2014/10/10 12:0 a.m.32 views

F5 Networks BIG-IP : BIND vulnerability (SOL14316)

ISC BIND 9.4.x, 9.5.x, 9.6.x, and 9.7.x before 9.7.6-P2; 9.8.x before 9.8.3-P2; 9.9.x before 9.9.1-P2; and 9.6-ESV before 9.6-ESV-R7-P2, when DNSSEC validation is enabled, does not properly initialize the failing-query cache, which allows remote attackers to cause a denial-of-service assertion...

7.8CVSS6.8AI score0.27383EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/10/10 12:0 a.m.45 views

F5 Networks BIG-IP : BIND vulnerability (SOL14613)

The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial-of-service DoS through a query with a malformed RDATA section that ...

7.8CVSS6.5AI score0.3415EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/10/10 12:0 a.m.29 views

F5 Networks BIG-IP : BIND vulnerability (SOL12985)

Off-by-one error in named in ISC BIND 9.x before 9.7.3-P1, 9.8.x before 9.8.0-P2, 9.4-ESV before 9.4-ESV-R4-P1, and 9.6-ESV before 9.6-ESV-R4-P1 allows remote DNS servers to cause a denial of service assertion failure and daemon exit via a negative response containing large RRSIG RRsets...

5CVSS6.5AI score0.24638EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/10/10 12:0 a.m.23 views

F5 Networks BIG-IP : BIND vulnerability (SOL15481)

The resolver in ISC BIND 9 through 9.8.1-P1 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a 'ghost domain names' attack. CVE-2012-10...

5CVSS7AI score0.13538EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/10/10 12:0 a.m.173 views

F5 Networks BIG-IP : BIND DNS cache poisoning vulnerability (SOL8938)

The remote BIG-IP device is missing a patch required by a security advisory. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from F5 Networks BIG-IP Solution SOL8938. The text description of this plugin is C F5 Networks...

6.8CVSS6.7AI score0.95182EPSS
Exploits20References3
Tenable Nessus
Tenable Nessus
added 2014/08/20 12:0 a.m.39 views

AIX 7.1 TL 2 : bind9 (IV61090)

The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses, which allows remote attackers to cause a denial of service traffic amplification via DNS queries with...

5CVSS8.4AI score0.5726EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2014/08/20 12:0 a.m.38 views

AIX 6.1 TL 8 : bind9 (IV62146)

The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses, which allows remote attackers to cause a denial of service traffic amplification via DNS queries with...

5CVSS8.4AI score0.5726EPSS
Exploits2References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

ISC BIND 8.1 host Remote Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1887/info An exploitable buffer overflow vulnerability exists in certain non-current versions of the ISC host command. host can be used to issue an AXFR command to effect a zone transfer for a given domain name. In affect...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

ISC BIND 4.9.7/8.x Traffic Amplification and NS Route Discovery Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/983/info ISC BIND 4.9.7/8.1/8.1.1/8.1.2/8.2/8.2.1/8.2.2 Traffic Amplification and NS Route Discovery Vulnerability A potential denial of service hence forth referred to as DoS attack exists in the default configuration of...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

ISC BIND 8.3.x OPT Record Large UDP Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6161/info ISC BIND is vulnerable to a denial of service attack. When a DNS lookup is requested on a non-existant sub-domain of a valid domain and an OPT resource record with a large UDP payload is attached, the server may...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

ISC BIND 4.9.7 -T1B named SIGINT and SIGIOT symlink Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/80/info The named daemon will dump the named database to /var/tmp/nameddump.db when it receives a SIGINT signal. It does not check for symbolic links while doing so and can be made to overwrite any file in the system. The...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.31 views

ISC BIND <= 8.2.2,IRIX <= 6.5.17,Solaris 7.0 (NXT Overflow & Denial of Service) Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/788/info There are several vulnerabilities in recent BIND packages pre 8.2.2. The first is a buffer overflow condition which is a result of BIND improperly validating NXT records. The consequence of this being exploited i...

7.1AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2014/06/25 12:0 a.m.2 views

ISC BIND Recursive Nameservers Prefetch Denial of Service (CVE-2014-3214)

A denial of service vulnerability has been reported in ISC BIND. The vulnerability is due to an assertion failure when processing queries involved in the prefetch feature of recursive nameservers. A remote attacker may exploit this vulnerability by sending a specially crafted query to the affecte...

5CVSS3.8AI score0.17259EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/06/18 12:0 a.m.32 views

McAfee Firewall Enterprise DoS (SB10052)

The remote host has a version of McAfee Firewall Enterprise installed that is affected by a denial of service vulnerability due to a flaw in the packaged ISC BIND server. An attacker can exploit this by sending a specially crafted query with a malformed RDATA section. C Tenable Network Security,...

7.8CVSS6.6AI score0.3415EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2014/06/18 12:0 a.m.62 views

McAfee Web Gateway < 7.3.2.2 DoS (SB10052)

The remote host has a version of McAfee Web Gateway MWG prior to 7.3.2.2. It is, therefore, affected by a denial of service vulnerability due to a flaw in the packaged ISC BIND server. An attacker can exploit this vulnerability by sending a specially crafted query with a malformed RDATA section. ...

7.8CVSS6.6AI score0.3415EPSS
Exploits1References2
NVD
NVD
added 2014/06/13 11:19 a.m.18 views

CVE-2014-3859

libdns in ISC BIND 9.10.0 before P2 does not properly handle EDNS options, which allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit via a crafted packet, as demonstrated by an attack against named, dig, or delv...

5CVSS6.4AI score0.06978EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2014/06/13 11:19 a.m.31 views

CVE-2014-3859

libdns in ISC BIND 9.10.0 before P2 does not properly handle EDNS options, which allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit via a crafted packet, as demonstrated by an attack against named, dig, or delv...

5CVSS7.1AI score0.06978EPSS
Exploits0References2
Prion
Prion
added 2014/06/13 11:19 a.m.17 views

Authentication flaw

libdns in ISC BIND 9.10.0 before P2 does not properly handle EDNS options, which allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit via a crafted packet, as demonstrated by an attack against named, dig, or delv...

5CVSS7AI score0.06978EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2014/06/13 10:0 a.m.25 views

CVE-2014-3859

libdns in ISC BIND 9.10.0 before P2 does not properly handle EDNS options, which allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit via a crafted packet, as demonstrated by an attack against named, dig, or delv...

6.4AI score0.06978EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2014/06/13 10:0 a.m.37 views

CVE-2014-3859

libdns in ISC BIND 9.10.0 before P2 does not properly handle EDNS options, which allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit via a crafted packet, as demonstrated by an attack against named, dig, or delv...

5CVSS7.3AI score0.06978EPSS
Exploits0
Rows per page
Query Builder