Ubuntu 6.06 LTS / 7.04 / 7.10 / 8.04 LTS : bind9 vulnerability (USN-622-1)

Dan Kaminsky discovered weaknesses in the DNS protocol as implemented by Bind. A remote attacker could exploit this to spoof DNS entries and poison DNS caches. Among other things, this could lead to misdirected email and web traffic. Note that Tenable Network Security has extracted the preceding...

Debian DSA-1603-1 : bind9 - DNS cache poisoning

Dan Kaminsky discovered that properties inherent to the DNS protocol lead to practical DNS cache poisoning attacks. Among other things, successful attacks can lead to misdirected web traffic and email rerouting. This update changes Debian's BIND 9 packages to implement the recommended...

DTSA-147-1 bind9 - cache poisoning

Bulletin has no description...

[SECURITY] [DSA 1603-1] New bind9 packages fix cache poisoning

------------------------------------------------------------------------ Debian Security Advisory DSA-1603-1 [email protected] http://www.debian.org/security/ Florian Weimer July 08, 2008 http://www.debian.org/security/faq -...

Debian Security Advisory DSA 1342-2 (bind9)

The remote host is missing an update to bind9 announced via advisory DSA 1342-2. OpenVAS Vulnerability Test $Id: deb13422.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1342-2 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 1172-1 (bind9)

The remote host is missing an update to bind9 announced via advisory DSA 1172-1. Two vulnerabilities have been discovered in BIND9, the Berkeley Internet Name Domain server. The first relates to SIG query processing and the second relates to a condition that can trigger an INSIST failure, both le...

Debian: Security Advisory (DSA-1254-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 1341-1 (bind9)

The remote host is missing an update to bind9 announced via advisory DSA 1341-1. OpenVAS Vulnerability Test $Id: deb13411.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1341-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian: Security Advisory (DSA-1172-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 1254-1 (bind9)

The remote host is missing an update to bind9 announced via advisory DSA 1254-1. It was discovered that the Bind name server daemon is vulnerable to denial of service by triggering an assertion through a crafted DNS query. This only affects installations which use the DNSSEC extensions. OpenVAS...

Debian: Security Advisory (DSA-1341-2)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 6.06 LTS / 6.10 / 7.04 : bind9 vulnerability (USN-491-1)

A flaw was discovered in Bind's sequence number generator. A remote attacker could calculate future sequence numbers and send forged DNS query responses. This could lead to client connections being directed to attacker-controlled hosts, resulting in credential theft and other attacks. Note that...

Ubuntu 5.10 / 6.06 LTS / 6.10 : bind9 vulnerabilities (USN-418-1)

A flaw was discovered in Bind's DNSSEC validation code. Remote attackers could send a specially crafted DNS query which would cause the Bind server to crash, resulting in a denial of service. Only servers configured to use DNSSEC extensions were vulnerable. Note that Tenable Network Security has...

Ubuntu 5.04 / 5.10 / 6.06 LTS : bind9 vulnerabilities (USN-343-1)

bind did not sufficiently verify particular requests and responses from other name servers and users. By sending a specially crafted packet, a remote attacker could exploit this to crash the name server. Note that Tenable Network Security has extracted the preceding description block directly fro...

SUSE-SA:2007:047: bind, bind9

The remote host is missing the patch for the advisory SUSE-SA:2007:047 bind, bind9. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. This plugin text was extracted from SuSE Security Advisory SUSE-SA:2007:047 if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...

Solaris 9 (sparc) : 112837-24

SunOS 5.9: in.dhcpd libresolv and BIND9 pa. Date this patch was last updated by Sun : Jul/21/11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...

MDKA-2007:090 : bind

A number of bugs in the BIND9 packages are fixed in this update: Threading was disabled in the ISC BIND package shipped with Mandriva Linux 2007 and Corporate Server 4, because the host command did not work properly with threading enabled. This update only builds the host command without threadin...

Debian DSA-1341-2 : bind9 - design error

This update provides fixed packages for the oldstable distribution sarge. For reference the original advisory text : Amit Klein discovered that the BIND name server generates predictable DNS query IDs, which may lead to cache poisoning attacks. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

dnscp.py.txt

!/usr/bin/env python """ DNS Cache Poison v0.3beta by posedge / Coromputer http://www.coromputer.net/ based on the Amit Klein paper: http://www.trusteer.com/docs/bind9dns.html output: ::: id: q: g: e: id: ID to predict q: number of queries from the DNS server only queries with LSB at 0 in ID g:...

BIND 9 0.3beta - DNS Cache Poisoning

!/usr/bin/env python """ DNS Cache Poison v0.3beta by posedge based on the Amit Klein paper: http://www.trusteer.com/docs/bind9dns.html output: ::: id: q: g: e: id: ID to predict q: number of queries from the DNS server only queries with LSB at 0 in ID g: number of good predicted IDs e: number of...