Lucene search
K

1440 matches found

Debian CVE
Debian CVE
added 2014/06/13 10:0 a.m.37 views

CVE-2014-3859

libdns in ISC BIND 9.10.0 before P2 does not properly handle EDNS options, which allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit via a crafted packet, as demonstrated by an attack against named, dig, or delv...

5CVSS7.3AI score0.06978EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/06/12 12:0 a.m.36 views

ISC BIND 9 EDNS Processing DoS

According to its self-reported version number, the remote installation of BIND is affected by a denial of service vulnerability. The issue exists due to an error in 'libdns' that fails to properly handle Extension Mechanisms for DNS EDNS options. Note that Nessus has not tested for this issue but...

5CVSS7.3AI score0.06978EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2014/05/10 12:0 a.m.11 views

ISC BIND 9.10.0 / 9.10.0-P1 named Assertion Failure DoS

Binary data 8313.prm...

5CVSS7.3AI score0.06978EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/05/10 12:0 a.m.14 views

ISC BIND 9.10.0 Recursive Nameserver DoS

Binary data 8247.prm...

5CVSS7.3AI score0.17259EPSS
Exploits0References4
NVD
NVD
added 2014/05/09 1:55 a.m.31 views

CVE-2014-3214

The prefetch implementation in named in ISC BIND 9.10.0, when a recursive nameserver is enabled, allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit via a DNS query that triggers a response with unspecified attributes...

5CVSS6.4AI score0.17259EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2014/05/09 1:55 a.m.33 views

CVE-2014-3214

The prefetch implementation in named in ISC BIND 9.10.0, when a recursive nameserver is enabled, allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit via a DNS query that triggers a response with unspecified attributes...

5CVSS7.2AI score0.17259EPSS
Exploits0References2
CVE
CVE
added 2014/05/09 1:0 a.m.527 views

CVE-2014-3214

CVE-2014-3214 affects ISC BIND prefetch in the server when a recursive nameserver is enabled (ISC BIND 9.10.0). A crafted DNS response can trigger an assertion failure and daemon exit, causing a denial of service. The NVD reports base metrics: CVSS v2 base score 5.0 (Medium) with network access a...

5CVSS8.8AI score0.17259EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2014/05/09 1:0 a.m.37 views

CVE-2014-3214

The prefetch implementation in named in ISC BIND 9.10.0, when a recursive nameserver is enabled, allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit via a DNS query that triggers a response with unspecified attributes...

5CVSS7.7AI score0.17259EPSS
Exploits0
F5 Networks
F5 Networks
added 2014/05/08 12:0 a.m.44 views

SOL15250 - BIND vulnerability CVE-2014-3214

The prefetch implementation in named in ISC BIND 9.10.0, when a recursive nameserver is enabled, allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit via a DNS query that triggers a response with unspecified attributes. CVE-2014-3214...

5CVSS8.5AI score0.17259EPSS
Exploits0References5
Check Point Advisories
Check Point Advisories
added 2014/02/25 12:0 a.m.6 views

ISC BIND NSEC3-Signed Zones Queries Processing Denial of Service (CVE-2014-0591)

A denial of service vulnerability exists in ISC BIND. The vulnerability is due to a failure to handle queries for NSEC3-signed zones. A remote attacker may exploit this vulnerability by sending a specially crafted query...

2.6CVSS7.1AI score0.31671EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2014/01/20 12:0 a.m.36 views

Mandriva Linux Security Advisory : bind (MDVSA-2014:002)

A vulnerability has been discovered and corrected in ISC BIND : The queryfindclosestnsec3 function in query.c in named in ISC BIND 9.6, 9.7, and 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2, and 9.6-ESV before 9.6-ESV-R10-P2, allows remote attackers to cause a denial of service INSIST assertion...

2.6CVSS6.4AI score0.31671EPSS
Exploits1References3
seebug.org
seebug.org
added 2014/01/16 12:0 a.m.227 views

ISC BIND NSEC3签名域查询处理拒绝服务漏洞

BUGTRAQ ID: 64801 CVECAN ID: CVE-2014-0591 BIND是一个应用非常广泛的DNS协议的实现。 ISC BIND处理对NSEC3签名域的请求时出现错误,这可使恶意用户利用特制的查询,造成INSIST失败类崩溃。成功利用需要主域名服务器至少服务一个NSEC3签名的域。 0 ISC BIND 9.9.x ISC BIND 9.6.x 厂商补丁: ISC --- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.isc.org/downloads...

2.6CVSS7.5AI score0.31671EPSS
Exploits1
NVD
NVD
added 2014/01/14 4:29 a.m.16 views

CVE-2014-0591

The queryfindclosestnsec3 function in query.c in named in ISC BIND 9.6, 9.7, and 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2, and 9.6-ESV before 9.6-ESV-R10-P2, allows remote attackers to cause a denial of service INSIST assertion failure and daemon exit via a crafted DNS query to an authoritativ...

2.6CVSS8.3AI score0.31671EPSS
Exploits1References32
OSV
OSV
added 2014/01/14 4:29 a.m.5 views

CVE-2014-0591

The queryfindclosestnsec3 function in query.c in named in ISC BIND 9.6, 9.7, and 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2, and 9.6-ESV before 9.6-ESV-R10-P2, allows remote attackers to cause a denial of service INSIST assertion failure and daemon exit via a crafted DNS query to an authoritativ...

6.5AI score
Exploits0References32
Prion
Prion
added 2014/01/14 4:29 a.m.29 views

Design/Logic Flaw

The queryfindclosestnsec3 function in query.c in named in ISC BIND 9.6, 9.7, and 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2, and 9.6-ESV before 9.6-ESV-R10-P2, allows remote attackers to cause a denial of service INSIST assertion failure and daemon exit via a crafted DNS query to an authoritativ...

2.6CVSS7AI score0.31671EPSS
Exploits1References32Affected Software1
Cvelist
Cvelist
added 2014/01/14 2:0 a.m.36 views

CVE-2014-0591

The queryfindclosestnsec3 function in query.c in named in ISC BIND 9.6, 9.7, and 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2, and 9.6-ESV before 9.6-ESV-R10-P2, allows remote attackers to cause a denial of service INSIST assertion failure and daemon exit via a crafted DNS query to an authoritativ...

6AI score0.31671EPSS
Exploits1References32
CVE
CVE
added 2014/01/14 2:0 a.m.372 views

CVE-2014-0591

CVE-2014-0591 affects ISC BIND 9.6, 9.7, 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2 (and 9.6-ESV before 9.6-ESV-R10-P2) where the query_findclosestnsec3 function in query.c can be triggered by crafted DNS queries to an authoritative server using NSEC3 signing. The result is a denial of service m...

2.6CVSS5.8AI score0.31671EPSS
Exploits1References32Affected Software1
Debian CVE
Debian CVE
added 2014/01/14 2:0 a.m.30 views

CVE-2014-0591

The queryfindclosestnsec3 function in query.c in named in ISC BIND 9.6, 9.7, and 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2, and 9.6-ESV before 9.6-ESV-R10-P2, allows remote attackers to cause a denial of service INSIST assertion failure and daemon exit via a crafted DNS query to an authoritativ...

2.6CVSS6.8AI score0.31671EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2014/01/14 12:0 a.m.37 views

ISC BIND 9 NSEC3-Signed Zone Handling DoS

According to its self-reported version number, the remote installation of BIND is affected by a denial of service vulnerability. This issue exists due to the handling of queries for NSEC3-signed zones related to the memcpy function in the 'name.c' file on authoritative nameservers. Note that Ness...

2.6CVSS6.6AI score0.31671EPSS
Exploits1References9
securityvulns
securityvulns
added 2014/01/14 12:0 a.m.44 views

ISC bind DoS

Crash on parsing malformed request to NSEC3-signed zone...

2.6CVSS2AI score0.31671EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder