Lucene search
K

7041 matches found

OpenVAS
OpenVAS
added 2017/01/16 12:0 a.m.27 views

ISC BIND Unusual DS Record Response Denial of Service Vulnerability - Linux

ISC BIND is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:isc:bind"; ifdescription...

7.5CVSS7.5AI score0.18124EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/01/16 12:0 a.m.37 views

ISC BIND 'nxdomain-redirect' Feature Response DoS Vulnerability - Windows

ISC BIND is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:isc:bind"; ifdescription...

7.5CVSS5.8AI score0.06787EPSS
Exploits0References2
NVD
NVD
added 2017/01/13 4:59 p.m.17 views

CVE-2016-8883

The jpcdectiledecode function in jpcdec.c in JasPer before 1.900.8 allows remote attackers to cause a denial of service assertion failure via a crafted file...

5.5CVSS6AI score0.01402EPSS
Exploits0References6
OSV
OSV
added 2017/01/13 4:59 p.m.18 views

CVE-2016-8883

The jpcdectiledecode function in jpcdec.c in JasPer before 1.900.8 allows remote attackers to cause a denial of service assertion failure via a crafted file...

5.5CVSS6.5AI score
Exploits0References6
Cvelist
Cvelist
added 2017/01/13 4:0 p.m.19 views

CVE-2016-8883

The jpcdectiledecode function in jpcdec.c in JasPer before 1.900.8 allows remote attackers to cause a denial of service assertion failure via a crafted file...

6AI score0.01402EPSS
Exploits0References6
CVE
CVE
added 2017/01/13 4:0 p.m.97 views

CVE-2016-8883

CVE-2016-8883 affects JasPer: jpc_dec_tiledecode in jpc_dec.c (pre-1.900.8) allows remote denial of service via a crafted file (assertion failure). Public advisories confirm multiple vendors released fixes (e.g., RH/CentOS, Debian LTS, Cloud Foundry USN, etc.). Remediation: upgrade JasPer to a pa...

5.5CVSS5.8AI score0.01402EPSS
Exploits0References6Affected Software1
UbuntuCve
UbuntuCve
added 2017/01/13 12:0 a.m.24 views

CVE-2016-8883

The jpcdectiledecode function in jpcdec.c in JasPer before 1.900.8 allows remote attackers to cause a denial of service assertion failure via a crafted file...

5.5CVSS6.9AI score0.01402EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/01/13 12:0 a.m.39 views

F5 Networks BIG-IP : BIND vulnerability (K40181790)

named in ISC BIND 9.x before 9.9.9-P5, 9.10.x before 9.10.4-P5, and 9.11.x before 9.11.0-P2 allows remote attackers to cause a denial of service assertion failure and daemon exit via a crafted DS resource record in an answer.CVE-2016-9444 Impact When the BIND recursion option is enabled, an...

7.5CVSS7.2AI score0.18124EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/01/13 12:0 a.m.46 views

FreeBSD : BIND -- multiple vulnerabilities (d4c7e9a9-d893-11e6-9b4d-d050996490d0)

ISC reports : A malformed query response received by a recursive server in response to a query of RTYPE ANY could trigger an assertion failure while named is attempting to add the RRs in the query response to the cache. Depending on the type of query and the EDNS options in the query they receive...

7.5CVSS6.7AI score0.40556EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2017/01/13 12:0 a.m.48 views

Debian DSA-3758-1 : bind9 - security update

Several denial-of-service vulnerabilities assertion failures were discovered in BIND, a DNS server implementation. - CVE-2016-9131 A crafted upstream response to an ANY query could cause an assertion failure. - CVE-2016-9147 A crafted upstream response with self-contradicting DNSSEC data could...

7.5CVSS7.5AI score0.40556EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2017/01/12 6:17 a.m.27 views

CVE-2016-9778

An error in handling certain queries can cause an assertion failure when a server is using the nxdomain-redirect feature to cover a zone for which it is also providing authoritative service. A vulnerable server could be intentionally stopped by an attacker if it was using a configuration that met...

7.5CVSS1.8AI score0.06787EPSS
Exploits0References2
CVE
CVE
added 2017/01/12 6:6 a.m.486 views

CVE-2016-9131

CVE-2016-9131 concerns ISC BIND and is triggered by improper handling of responses during recursion. A remote attacker can send a malformed RTYPE ANY response to cause an assertion failure and named process exit, i.e., a denial-of-service. Public advisories confirm affected versions across multip...

7.5CVSS7.3AI score0.40556EPSS
Exploits0References9Affected Software1
Debian CVE
Debian CVE
added 2017/01/12 6:6 a.m.26 views

CVE-2016-9444

named in ISC BIND 9.x before 9.9.9-P5, 9.10.x before 9.10.4-P5, and 9.11.x before 9.11.0-P2 allows remote attackers to cause a denial of service assertion failure and daemon exit via a crafted DS resource record in an answer...

7.5CVSS7.3AI score0.18124EPSS
Exploits0
CVE
CVE
added 2017/01/12 6:6 a.m.266 views

CVE-2016-9444

CVE-2016-9444 affects ISC BIND 9.x; a crafted DS resource record in an answer can cause the named DNS server to crash via an assertion failure, if the BIND recursion option is enabled. The vulnerability is exploited remotely by an unauthenticated attacker and may cause the named process to exit (...

7.5CVSS7.2AI score0.18124EPSS
Exploits0References9Affected Software1
Debian CVE
Debian CVE
added 2017/01/12 6:6 a.m.26 views

CVE-2016-9131

named in ISC BIND 9.x before 9.9.9-P5, 9.10.x before 9.10.4-P5, and 9.11.x before 9.11.0-P2 allows remote attackers to cause a denial of service assertion failure and daemon exit via a malformed response to an RTYPE ANY query...

7.5CVSS7.6AI score0.40556EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2017/01/12 5:48 a.m.27 views

CVE-2016-9444

A denial of service flaw was found in the way BIND handled an unusually-formed DS record response. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response...

7.5CVSS1.6AI score0.18124EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2017/01/12 5:18 a.m.33 views

CVE-2016-9131

A denial of service flaw was found in the way BIND processed a response to an ANY query. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response...

7.5CVSS2.9AI score0.40556EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/01/12 12:0 a.m.33 views

SUSE SLES11 Security Update : bind (SUSE-SU-2017:0112-1)

This update for bind fixes the following issues : - Fix a potential assertion failure that could have been triggered by a malformed response to an ANY query, thereby facilitating a denial-of-service attack. CVE-2016-9131, bsc1018700, bsc1018699 - Fix a potential assertion failure that could have...

7.5CVSS7.4AI score0.40556EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2017/01/12 12:0 a.m.47 views

SUSE SLED12 / SLES12 Security Update : bind (SUSE-SU-2017:0111-1)

This update for bind fixes the following issues : - Fix a potential assertion failure that could have been triggered by a malformed response to an ANY query, thereby facilitating a denial-of-service attack. CVE-2016-9131, bsc1018700, bsc1018699 - Fix a potential assertion failure that could have...

7.5CVSS7.4AI score0.40556EPSS
Exploits0References11
OSV
OSV
added 2017/01/11 9:59 p.m.6 views

SUSE-SU-2017:0112-1 Security update for bind

This update for bind fixes the following issues: - Fix a potential assertion failure that could have been triggered by a malformed response to an ANY query, thereby facilitating a denial-of-service attack. CVE-2016-9131, bsc1018700, bsc1018699 - Fix a potential assertion failure that could have...

7.5CVSS7.5AI score0.40556EPSS
Exploits0References8
Rows per page
Query Builder