Lucene search
K

15 matches found

ICS
ICS
added 2026/05/19 1:27 p.m.15 views

Technitium DNS Amplification

RISK EVALUATION Technitium DNS Server aggressively tries to fetch missing RRSIG records or mismatched DNSKEY records. An attacker in control of a domain can cause a vulnerable system to generate excessive network traffic. 2. RECOMMENDED PRACTICES Fixed in version 15.0. 3. DESCRIPTION Technitium...

6.9CVSS5.8AI score0.00389EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2010-3609

Malware in sbrugna...

4CVSS7.3AI score0.091EPSS
Exploits0References44
Tenable Nessus
Tenable Nessus
added 2024/09/03 12:0 a.m.29 views

EulerOS Virtualization 2.12.1 : systemd (EulerOS-SA-2024-2318)

According to the versions of the systemd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : The Closest Encloser Proof aspect of the DNS protocol in RFC 5155 when RFC 9276 guidance is skipped allows remote attackers to cau...

7.5CVSS6.9AI score0.99995EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/08/20 12:0 a.m.30 views

EulerOS 2.0 SP12 : systemd (EulerOS-SA-2024-2228)

According to the versions of the systemd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The Closest Encloser Proof aspect of the DNS protocol in RFC 5155 when RFC 9276 guidance is skipped allows remote attackers to cause a denial of...

7.5CVSS6.9AI score0.99995EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/07/16 12:0 a.m.37 views

EulerOS 2.0 SP9 : dnsmasq (EulerOS-SA-2024-1954)

According to the versions of the dnsmasq package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The Closest Encloser Proof aspect of the DNS protocol in RFC 5155 when RFC 9276 guidance is skipped allows remote attackers to cause a denial of...

7.5CVSS6.9AI score0.99995EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/07/16 12:0 a.m.33 views

EulerOS 2.0 SP9 : systemd (EulerOS-SA-2024-1974)

According to the versions of the systemd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The Closest Encloser Proof aspect of the DNS protocol in RFC 5155 when RFC 9276 guidance is skipped allows remote attackers to cause a denial of...

7.5CVSS6.9AI score0.99995EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/06/28 12:0 a.m.32 views

EulerOS 2.0 SP12 : dnsmasq (EulerOS-SA-2024-1851)

According to the versions of the dnsmasq package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The Closest Encloser Proof aspect of the DNS protocol in RFC 5155 when RFC 9276 guidance is skipped allows remote attackers to cause a denial of...

7.5CVSS6.9AI score0.99995EPSS
Exploits1References3
OSV
OSV
added 2024/02/14 4:15 p.m.6 views

AZL-34440 CVE-2023-50387 affecting package unbound for versions less than 1.19.1-1

Certain DNSSEC aspects of the DNS protocol in RFC 4033, 4034, 4035, 6840, and related RFCs allow remote attackers to cause a denial of service CPU consumption via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG...

7.5CVSS7AI score0.99995EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/14 12:0 a.m.16 views

CVE-2023-50387

Certain DNSSEC aspects of the DNS protocol in RFC 4033, 4034, 4035, 6840, and related RFCs allow remote attackers to cause a denial of service CPU consumption via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG...

7.8AI score0.99995EPSS
Exploits0References30
Positive Technologies
Positive Technologies
added 2022/09/29 12:0 a.m.11 views

PT-2022-21780 · Unknown · Go-Resolver

Name of the Vulnerable Software and Affected Versions: go-resolver affected versions not specified Description: The issue is related to incorrect DNSSEC validation. An attacker can cause the package to report successful validation for invalid, attacker-controlled records. The owner name of RRSIG...

7.7CVSS6.1AI score0.00227EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2013/01/24 12:0 a.m.41 views

AIX 6.1 TL 4 : bind9 (IV01118)

The security status of an NS RRset is not properly determined during a DNSKEY algorithm rollover which can allow a remote attacker to cause a denial of service. Signed negative responses and corresponding RRSIG records in the cache are not properly handled which can allow a remote attacker to cau...

6.4CVSS7.2AI score0.14503EPSS
Exploits0References3
Debian
Debian
added 2010/12/10 8:27 p.m.30 views

[SECURITY] [DSA-2130-1] New BIND packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-2130-1 [email protected] http://www.debian.org/security/ Florian Weimer December 10, 2010 http://www.debian.org/security/faq -...

6.4CVSS7.2AI score0.14503EPSS
Exploits0
Debian CVE
Debian CVE
added 2010/12/03 8:0 p.m.39 views

CVE-2010-3613

named in ISC BIND 9.6.2 before 9.6.2-P3, 9.6-ESV before 9.6-ESV-R3, and 9.7.x before 9.7.2-P3 does not properly handle the combination of signed negative responses and corresponding RRSIG records in the cache, which allows remote attackers to cause a denial of service daemon crash via a query for...

4CVSS7.4AI score0.091EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/12/03 12:0 a.m.48 views

ISC BIND 9 9.4-ESV < 9.4-ESV-R4, 9.6.2 < 9.6.2-P3, 9.6-ESV < 9.6-ESV-R3, 9.7.x < 9.7.2-P3 Multiple Vulnerabilities

According to its self-reported version number, the remote installation of BIND is affected by multiple vulnerabilities : - Failure to clear existing RRSIG records when a NO DATA is negatively cached could cause subsequent lookups to crash named. CVE-2010-3613 - Named, when acting as a DNSSEC...

6.4CVSS7.5AI score0.14503EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2010/12/01 12:0 a.m.33 views

ISC BIND 9.4-ESV < 9.4-ESV-R4 / 9.6.2 < 9.6.2-P3, 9.6-ESV < 9.6-ESV-R3 / 9.7.x < 9.7.2-P3 Multiple Vulnerabilities

Binary data 5718.prm...

6.4CVSS9AI score0.14503EPSS
Exploits0References10
Rows per page
Query Builder