Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2010/02/23 12:0 a.m.26 views

openSUSE Security Update : unbound (unbound-2015)

Unbound did not check signatures on NSEC3 records which allowed attackers who could spoof DNS responses to bypass DNSSEC. CVE-2009-3602: CVSS v2 Base Score: 7.5 HIGH AV:N/AC:L/Au:N/C:P/I:P/A:P %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

7.5CVSS5.4AI score0.02976EPSS
Exploits0References2
Debian
Debian
added 2009/12/23 8:35 p.m.14 views

[SECURITY] [DSA 1963-1] New unbound packages fix DNSSEC validation

------------------------------------------------------------------------ Debian Security Advisory DSA-1963-1 [email protected] http://www.debian.org/security/ Florian Weimer December 23, 2009 http://www.debian.org/security/faq -...

7.5CVSS6.1AI score0.02976EPSS
Exploits0
OSV
OSV
added 2009/10/13 10:30 a.m.6 views

CVE-2009-3602

Unbound before 1.3.4 does not properly verify signatures for NSEC3 records, which allows remote attackers to cause secure delegations to be downgraded via DNS spoofing or other DNS-related attacks in conjunction with crafted delegation responses...

6.5AI score
Exploits0References9
CVE
CVE
added 2009/10/13 10:0 a.m.65 views

CVE-2009-3602

Unbound (DNS resolver) versions before 1.3.4 are affected by CVE-2009-3602 due to incorrect verification of NSEC3 signatures, allowing remote attackers to cause secure delegations to be downgraded via DNS spoofing or related DNS attacks when handling crafted responses. Public disclosures and advi...

7.5CVSS6.3AI score0.02976EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder