CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Zero Day Initiative•added 2021/04/30 12:0 a.m.•28 views

ISC BIND TKEY Query Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of ISC BIND. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of TKEY queries. The issue results from the lack of proper validation of...

3.7CVSS0.9AI score

Exploits0

IBM Security Bulletins•added 2019/10/18 3:10 a.m.•31 views

Security Bulletin: Vulnerability in BIND affects IBM Netezza Host Management (CVE-2015-5477)

Summary BIND vulnerability disclosed by Internet Systems Consortium ISC affects IBM Netezza Host Management. IBM Netezza Host Management has addressed this CVE. Vulnerability Details CVEID: CVE-2015-5477 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused by an error in the handlin...

7.8CVSS0.9AI score0.92376EPSS

Exploits12Affected Software1

Tenable Nessus•added 2015/09/18 12:0 a.m.•33 views

F5 Networks BIG-IP : BIND vulnerability (K16909)

An error in the handling of TKEY queries can be exploited by an attacker for use as a denial-of-service vector, as a constructed packet can use the defect to trigger a REQUIRE assertion failure, causing BIND to exit. CVE-2015-5477 C Tenable Network Security, Inc. The descriptive text and package...

7.8CVSS6.9AI score0.92376EPSS

Tenable Nessus•added 2015/08/17 12:0 a.m.•47 views

Mac OS X : OS X Server < 4.1.5 BIND DoS

The remote Mac OS X host has a version of OS X Server installed that is prior to 4.1.5. It is, therefore, affected by a denial of service vulnerability due to an assertion flaw that occurs when handling TKEY queries. A remote attacker can exploit this, via a specially crafted request, to cause a...

7.8CVSS6.9AI score0.92376EPSS

Tenable Nessus•added 2015/08/14 12:0 a.m.•100 views

McAfee Firewall Enterprise DoS (SB10126)

The remote host has a version of McAfee Firewall Enterprise installed that is affected by a denial of service vulnerability due to an assertion flaw that occurs when handling TKEY queries. A remote attacker can exploit this, via a specially crafted request, to cause a REQUIRE assertion failure an...

7.8CVSS6.9AI score0.92376EPSS

Tenable Nessus•added 2015/08/04 12:0 a.m.•26 views

openSUSE Security Update : bind (openSUSE-2015-530)

bind was updated to fix one security issue. This security issue was fixed : - CVE-2015-5477: Remote DoS via TKEY queries boo939567 Exposure to this issue can not be prevented by either ACLs or configuration options limiting or denying service because the exploitable code occurs early in the packe...

Tenable Nessus•added 2015/08/03 12:0 a.m.•28 views

SUSE SLES10 Security Update : bind (SUSE-SU-2015:1322-1)

bind was updated to fix one security issue : CVE-2015-5477: Remote Denial-of-Service via TKEY queries. bsc939567 Exposure to this issue can not be prevented by either ACLs or configuration options limiting or denying service because the exploitable code occurs early in the packet handling. Note...

VulnCheck KEV•added 2015/08/02 12:0 a.m.•2 views

Exploits12References5

VulnCheck KEV: CVE-2015-5477

named in ISC BIND 9.x before 9.9.7-P2 and 9.10.x before 9.10.2-P3 allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit via TKEY queries...

OSV•added 2015/07/31 10:46 p.m.•10 views

Exploits12References1

MGASA-2015-0298 Updated bind package fixes security vulnerability

7.8CVSS6.2AI score0.92376EPSS

Exploits12References5

Mageia•added 2015/07/31 10:46 p.m.•38 views

Updated bind package fixes security vulnerability

7.8CVSS7.7AI score0.92376EPSS

Tenable Nessus•added 2015/07/31 12:0 a.m.•33 views

SUSE SLES11 Security Update : bind (SUSE-SU-2015:1316-1)

bind was updated to fix one security issue. This security issue was fixed : - CVE-2015-5477: Remote DoS via TKEY queries bsc939567 Exposure to this issue can not be prevented by either ACLs or configuration options limiting or denying service because the exploitable code occurs early in the packe...

Tenable Nessus•added 2015/07/30 12:0 a.m.•17 views

SUSE SLED11 / SLES11 Security Update : bind (SUSE-SU-2015:1304-1)