Lucene search
K

1440 matches found

OSV
OSV
added 2013/03/28 4:55 p.m.4 views

CVE-2013-2266

libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows remote attackers to cause a denial of service memory consumption via a crafted regular expression, as demonstrated by a memory-exhaustion attack again...

7.8CVSS6.3AI score0.42851EPSS
Exploits1References15
Prion
Prion
added 2013/03/28 4:55 p.m.29 views

Code injection

libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows remote attackers to cause a denial of service memory consumption via a crafted regular expression, as demonstrated by a memory-exhaustion attack again...

7.8CVSS6.5AI score0.42851EPSS
Exploits1References15Affected Software1
Cvelist
Cvelist
added 2013/03/28 4:0 p.m.27 views

CVE-2013-2266

libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows remote attackers to cause a denial of service memory consumption via a crafted regular expression, as demonstrated by a memory-exhaustion attack again...

7.5AI score0.42851EPSS
Exploits1References15
CVE
CVE
added 2013/03/28 4:0 p.m.297 views

CVE-2013-2266

CVE-2013-2266 affects ISC BIND’s libdns, allowing remote attackers to trigger a denial of service by sending a crafted regular expression that drives memory usage. Affected are BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2. Several ven...

7.8CVSS8AI score0.42851EPSS
Exploits1References15Affected Software1
Debian CVE
Debian CVE
added 2013/03/28 4:0 p.m.28 views

CVE-2013-2266

libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows remote attackers to cause a denial of service memory consumption via a crafted regular expression, as demonstrated by a memory-exhaustion attack again...

7.8CVSS6.6AI score0.42851EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2013/03/26 12:0 a.m.27 views

CVE-2013-2266

libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows remote attackers to cause a denial of service memory consumption via a crafted regular expression, as demonstrated by a memory-exhaustion attack again...

7.8CVSS6.8AI score0.42851EPSS
Exploits1References4
seebug.org
seebug.org
added 2013/01/30 12:0 a.m.284 views

ISC BIND 9 DNS64 远程拒绝服务漏洞

BUGTRAQ ID: 57556 CVECAN ID: CVE-2012-5689 BIND是一个应用非常广泛的DNS协议的实现。 ISC BIND 9.8.x、9.9.x在某些配置中,DNS64的响应策略区域缺少AAAA重写规则,远程攻击者通过AAAA记录查询,可造成拒绝服务(断言失败并退出指定程序)。 0 ISC BIND 9.9.x ISC BIND 9.8.x 临时解决方法: 2013年1月24日厂商已经发布beta版本,修复了此漏洞。如果您不能立刻安装补丁或者升级,NSFOCUS建议您采取以下措施以降低威胁: 确保RPZ包含每个A重写规则的AAAA重写规则。 厂商补丁: IS...

7.1CVSS8.4AI score0.12036EPSS
Exploits1
NVD
NVD
added 2013/01/25 12:0 p.m.26 views

CVE-2012-5689

ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS64 with a Response Policy Zone that lacks an AAAA rewrite rule, allows remote attackers to cause a denial of service assertion failure and named daemon exit via a query for an AAAA record...

7.1CVSS8.2AI score0.12036EPSS
Exploits1References4
OSV
OSV
added 2013/01/25 12:0 p.m.10 views

CVE-2012-5689

ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS64 with a Response Policy Zone that lacks an AAAA rewrite rule, allows remote attackers to cause a denial of service assertion failure and named daemon exit via a query for an AAAA record...

7.1CVSS6.3AI score0.12036EPSS
Exploits1References4
Cvelist
Cvelist
added 2013/01/25 11:0 a.m.31 views

CVE-2012-5689

ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS64 with a Response Policy Zone that lacks an AAAA rewrite rule, allows remote attackers to cause a denial of service assertion failure and named daemon exit via a query for an AAAA record...

8.2AI score0.12036EPSS
Exploits1References4
CVE
CVE
added 2013/01/25 11:0 a.m.198 views

CVE-2012-5689

The CVE-2012-5689 issue affects ISC BIND 9.8.x–9.9.2-P1 when DNS64 with RPZ is used without an AAAA rewrite rule, allowing remote attackers to cause a DoS via an AAAA query (assertion failure and named exit). Affected configurations point to DNS64 + RPZ Rewriting; mitigation in practice is to ens...

7.1CVSS7.9AI score0.12036EPSS
Exploits1References4Affected Software1
Debian CVE
Debian CVE
added 2013/01/25 11:0 a.m.33 views

CVE-2012-5689

ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS64 with a Response Policy Zone that lacks an AAAA rewrite rule, allows remote attackers to cause a denial of service assertion failure and named daemon exit via a query for an AAAA record...

7.1CVSS7.4AI score0.12036EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2013/01/25 12:0 a.m.31 views

CVE-2012-5689

ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS64 with a Response Policy Zone that lacks an AAAA rewrite rule, allows remote attackers to cause a denial of service assertion failure and named daemon exit via a query for an AAAA record...

7.1CVSS7.1AI score0.12036EPSS
Exploits1References3
OSV
OSV
added 2013/01/25 12:0 a.m.4 views

UBUNTU-CVE-2012-5689

ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS64 with a Response Policy Zone that lacks an AAAA rewrite rule, allows remote attackers to cause a denial of service assertion failure and named daemon exit via a query for an AAAA record...

7.1CVSS7.2AI score0.12036EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2013/01/24 12:0 a.m.31 views

AIX 5.3 TL 12 : bind9 (IV09491)

An as-yet unidentified network event caused BIND 9 resolvers to cache an invalid record, subsequent queries for which could crash the resolvers with an assertion failure. Furthermore, AIX BIND 9.4.1 is affected by the following three security vulnerabilities: CVE-2010-0382 - ISC BIND...

7.6CVSS6.9AI score0.16747EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2013/01/24 12:0 a.m.39 views

AIX 7.1 TL 0 : bind9 (IV11744)

An as-yet unidentified network event caused BIND 9 resolvers to cache an invalid record, subsequent queries for which could crash the resolvers with an assertion failure. Furthermore, AIX BIND 9.4.1 is affected by the following three security vulnerabilities: CVE-2010-0382 - ISC BIND...

7.6CVSS6.9AI score0.16747EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2013/01/24 12:0 a.m.28 views

AIX 6.1 TL 6 : bind9 (IV11743)

An as-yet unidentified network event caused BIND 9 resolvers to cache an invalid record, subsequent queries for which could crash the resolvers with an assertion failure. Furthermore, AIX BIND 9.4.1 is affected by the following three security vulnerabilities: CVE-2010-0382 - ISC BIND...

7.6CVSS6.9AI score0.16747EPSS
Exploits0References6
seebug.org
seebug.org
added 2012/12/11 12:0 a.m.221 views

ISC BIND 9 DNS64 REQUIRE断言失败拒绝服务漏洞

BUGTRAQ ID: 56817 CVECAN ID: CVE-2012-5688 BIND是一个应用非常广泛的DNS协议的实现。 ISC BIND 9.8.0及更高版本支持 DNS64 IPv6转换机制,如果启用了dns64配置状态,BIND 9域名服务器在解析特制的请求时,会触发REQUIRE断言失败,造成服务器崩溃。此漏洞可被远程利用,9.8.0之前版本、不启用DNS64时不受此漏洞的影响。 0 ISC BIND 9.9.0-9.9.2 ISC BIND 9.8.0-9.8.4 临时解决方法: 对于启用了DNS64的BIND...

7.8CVSS8.3AI score0.10896EPSS
Exploits1
NVD
NVD
added 2012/12/06 11:45 a.m.19 views

CVE-2012-5688

ISC BIND 9.8.x before 9.8.4-P1 and 9.9.x before 9.9.2-P1, when DNS64 is enabled, allows remote attackers to cause a denial of service assertion failure and daemon exit via a crafted query...

7.8CVSS8AI score0.10896EPSS
Exploits1References6
OSV
OSV
added 2012/12/06 11:45 a.m.5 views

CVE-2012-5688

ISC BIND 9.8.x before 9.8.4-P1 and 9.9.x before 9.9.2-P1, when DNS64 is enabled, allows remote attackers to cause a denial of service assertion failure and daemon exit via a crafted query...

6.2AI score
Exploits0References8
Rows per page
Query Builder