1440 matches found
F5 Networks BIG-IP : BIND vulnerability (SOL14316)
ISC BIND 9.4.x, 9.5.x, 9.6.x, and 9.7.x before 9.7.6-P2; 9.8.x before 9.8.3-P2; 9.9.x before 9.9.1-P2; and 9.6-ESV before 9.6-ESV-R7-P2, when DNSSEC validation is enabled, does not properly initialize the failing-query cache, which allows remote attackers to cause a denial-of-service assertion...
F5 Networks BIG-IP : BIND vulnerability (SOL14613)
The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial-of-service DoS through a query with a malformed RDATA section that ...
F5 Networks BIG-IP : BIND vulnerability (SOL12985)
Off-by-one error in named in ISC BIND 9.x before 9.7.3-P1, 9.8.x before 9.8.0-P2, 9.4-ESV before 9.4-ESV-R4-P1, and 9.6-ESV before 9.6-ESV-R4-P1 allows remote DNS servers to cause a denial of service assertion failure and daemon exit via a negative response containing large RRSIG RRsets...
F5 Networks BIG-IP : BIND vulnerability (SOL15481)
The resolver in ISC BIND 9 through 9.8.1-P1 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a 'ghost domain names' attack. CVE-2012-10...
F5 Networks BIG-IP : BIND DNS cache poisoning vulnerability (SOL8938)
The remote BIG-IP device is missing a patch required by a security advisory. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from F5 Networks BIG-IP Solution SOL8938. The text description of this plugin is C F5 Networks...
AIX 7.1 TL 2 : bind9 (IV61090)
The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses, which allows remote attackers to cause a denial of service traffic amplification via DNS queries with...
AIX 6.1 TL 8 : bind9 (IV62146)
The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses, which allows remote attackers to cause a denial of service traffic amplification via DNS queries with...
ISC BIND 8.1 host Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1887/info An exploitable buffer overflow vulnerability exists in certain non-current versions of the ISC host command. host can be used to issue an AXFR command to effect a zone transfer for a given domain name. In affect...
ISC BIND 4.9.7/8.x Traffic Amplification and NS Route Discovery Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/983/info ISC BIND 4.9.7/8.1/8.1.1/8.1.2/8.2/8.2.1/8.2.2 Traffic Amplification and NS Route Discovery Vulnerability A potential denial of service hence forth referred to as DoS attack exists in the default configuration of...
ISC BIND 8.3.x OPT Record Large UDP Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6161/info ISC BIND is vulnerable to a denial of service attack. When a DNS lookup is requested on a non-existant sub-domain of a valid domain and an OPT resource record with a large UDP payload is attached, the server may...
ISC BIND 4.9.7 -T1B named SIGINT and SIGIOT symlink Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/80/info The named daemon will dump the named database to /var/tmp/nameddump.db when it receives a SIGINT signal. It does not check for symbolic links while doing so and can be made to overwrite any file in the system. The...
ISC BIND <= 8.2.2,IRIX <= 6.5.17,Solaris 7.0 (NXT Overflow & Denial of Service) Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/788/info There are several vulnerabilities in recent BIND packages pre 8.2.2. The first is a buffer overflow condition which is a result of BIND improperly validating NXT records. The consequence of this being exploited i...
ISC BIND Recursive Nameservers Prefetch Denial of Service (CVE-2014-3214)
A denial of service vulnerability has been reported in ISC BIND. The vulnerability is due to an assertion failure when processing queries involved in the prefetch feature of recursive nameservers. A remote attacker may exploit this vulnerability by sending a specially crafted query to the affecte...
McAfee Firewall Enterprise DoS (SB10052)
The remote host has a version of McAfee Firewall Enterprise installed that is affected by a denial of service vulnerability due to a flaw in the packaged ISC BIND server. An attacker can exploit this by sending a specially crafted query with a malformed RDATA section. C Tenable Network Security,...
McAfee Web Gateway < 7.3.2.2 DoS (SB10052)
The remote host has a version of McAfee Web Gateway MWG prior to 7.3.2.2. It is, therefore, affected by a denial of service vulnerability due to a flaw in the packaged ISC BIND server. An attacker can exploit this vulnerability by sending a specially crafted query with a malformed RDATA section. ...
CVE-2014-3859
libdns in ISC BIND 9.10.0 before P2 does not properly handle EDNS options, which allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit via a crafted packet, as demonstrated by an attack against named, dig, or delv...
CVE-2014-3859
libdns in ISC BIND 9.10.0 before P2 does not properly handle EDNS options, which allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit via a crafted packet, as demonstrated by an attack against named, dig, or delv...
Authentication flaw
libdns in ISC BIND 9.10.0 before P2 does not properly handle EDNS options, which allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit via a crafted packet, as demonstrated by an attack against named, dig, or delv...
CVE-2014-3859
libdns in ISC BIND 9.10.0 before P2 does not properly handle EDNS options, which allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit via a crafted packet, as demonstrated by an attack against named, dig, or delv...
CVE-2014-3859
libdns in ISC BIND 9.10.0 before P2 does not properly handle EDNS options, which allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit via a crafted packet, as demonstrated by an attack against named, dig, or delv...