Lucene search
K

29 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2021/09/23 1:45 a.m.43 views

Security Bulletin: Vulnerabilities in BIND affect Power Hardware Management Console

Summary BIND is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2017-3136 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused by the improper handling of query requests when using DNS64 with "break-dnssec yes"...

7.5CVSS0.5AI score0.18299EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2017:1000-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.63346EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2017:0999-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.63346EPSS
Exploits1References8
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/18 2:26 p.m.39 views

Security Bulletin: IBM i is affected by networking BIND vulnerabilities (CVE-2017-3136, CVE-2017-3137 and CVE-2017-3138)

Summary ISC BIND is vulnerable to several security vulnerabilities. IBM i has addressed these vulnerabilities. Vulnerability Details CVEID: CVE-2017-3138 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused by an error related to the processing of control channel commands. By sendin...

7.5CVSS1.5AI score0.11093EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2019/01/16 8:0 p.m.20 views

CVE-2017-3138 named exits with a REQUIRE assertion failure if it receives a null command string on its control channel

named contains a feature which allows operators to issue commands to a running server by communicating with the server process over a control channel, using a utility program such as rndc. A regression introduced in a recent feature change has created a situation under which some versions of name...

6.5CVSS6.9AI score0.05478EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2019/01/16 8:0 p.m.22 views

CVE-2017-3138

named contains a feature which allows operators to issue commands to a running server by communicating with the server process over a control channel, using a utility program such as rndc. A regression introduced in a recent feature change has created a situation under which some versions of name...

6.5CVSS6.5AI score0.05478EPSS
Exploits0
Debian CVE
Debian CVE
added 2019/01/16 8:0 p.m.27 views

CVE-2017-3138

named contains a feature which allows operators to issue commands to a running server by communicating with the server process over a control channel, using a utility program such as rndc. A regression introduced in a recent feature change has created a situation under which some versions of name...

6.5CVSS6.3AI score0.05478EPSS
Exploits0
OpenVAS
OpenVAS
added 2018/01/25 12:0 a.m.25 views

Debian: Security Advisory (DLA-957-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.11093EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2017/08/17 12:0 a.m.239 views

GLSA-201708-01 : BIND: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201708-01 BIND: Multiple vulnerabilities Multiple vulnerabilities have been discovered in BIND. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could send a specially crafted DNS request ...

7.8CVSS6.5AI score0.40556EPSS
Exploits5References11
Tenable Nessus
Tenable Nessus
added 2017/07/17 12:0 a.m.31 views

Fedora 26 : 32:bind (2017-f9f909a7b7)

Security fix for CVE-2017-3136, CVE-2017-3137 and CVE-2017-3138 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

7.5CVSS6.6AI score0.11093EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2017/07/17 12:0 a.m.35 views

Fedora 26 : bind99 (2017-a354efc764)

Security fix for CVE-2017-3136, CVE-2017-3137 and CVE-2017-3138 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

7.5CVSS6.6AI score0.11093EPSS
Exploits0References4
Debian
Debian
added 2017/05/28 1:21 p.m.35 views

[SECURITY] [DLA 957-1] bind9 security update

Package : bind9 Version : 1:9.8.4.dfsg.P1-6+nmu2+deb7u16 CVE ID : CVE-2017-3136 CVE-2017-3137 CVE-2017-3138 CVE-2017-3136 Oleg Gorokhov of Yandex discovered that BIND does not properly handle certain queries when using DNS64 with the "break-dnssec yes;" option, allowing a remote attacker to cause...

7.5CVSS7.5AI score0.11093EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/05/23 12:0 a.m.30 views

ISC BIND Control Channel Denial of Service Vulnerability - Windows

ISC BIND is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:isc:bind"; ifdescription...

6.5CVSS6.2AI score0.05478EPSS
Exploits0References2
Debian
Debian
added 2017/05/14 5:47 p.m.31 views

[SECURITY] [DSA 3854-1] bind9 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3854-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 14, 2017 https://www.debian.org/security/faq -...

5CVSS1.3AI score0.11093EPSS
Exploits0
Debian
Debian
added 2017/05/14 5:47 p.m.37 views

[SECURITY] [DSA 3854-1] bind9 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3854-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 14, 2017 https://www.debian.org/security/faq -...

7.5CVSS7.9AI score0.11093EPSS
Exploits0
Cloud Foundry
Cloud Foundry
added 2017/05/01 12:0 a.m.34 views

USN-3259-1: Bind vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description It was discovered that the resolver in Bind made incorrect assumptions about ordering when processing responses containing a CNAME or DNAME. An attacker could use this cause a denial of service...

7.5CVSS6.6AI score0.11093EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/04/24 12:0 a.m.55 views

Fedora 24 : 32:bind (2017-0a876b0ba5)

Security fix for CVE-2017-3136, CVE-2017-3137 and CVE-2017-3138 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

7.5CVSS6.6AI score0.11093EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2017/04/23 12:0 a.m.31 views

Fedora Update for bind FEDORA-2017-0a876b0ba5

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.11093EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/04/21 12:0 a.m.32 views

Ubuntu: Security Advisory (USN-3259-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.11093EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/04/20 12:0 a.m.32 views

Fedora 25 : 32:bind (2017-ee4b0f53cb)

Security fix for CVE-2017-3136, CVE-2017-3137 and CVE-2017-3138 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

7.5CVSS6.6AI score0.11093EPSS
Exploits0References4
Rows per page
Query Builder