Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.21 views

RHEL 7 : unbound (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - unbound: command injection with data coming from a specially crafted IPSECKEY answer CVE-2019-18934 - A...

7.3CVSS7.2AI score0.03212EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:38 a.m.2 views

SUSE CVE-2017-15105

A flaw was found in the way unbound before 1.6.8 validated wildcard-synthesized NSEC records. An improperly validated wildcard NSEC record could be used to prove the non-existence NXDOMAIN answer of an existing wildcard record, or trick unbound into accepting a NODATA proof...

5.4CVSS6.6AI score0.0263EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:38 a.m.4 views

SUSE CVE-2017-15107

A vulnerability was found in the implementation of DNSSEC in Dnsmasq up to and including 2.78. Wildcard synthesized NSEC records could be improperly interpreted to prove the non-existence of hostnames that actually exist...

5.4CVSS6.8AI score0.02646EPSS
Exploits0References8
OSV
OSV
added 2021/04/22 4:59 p.m.4 views

USN-4924-1 dnsmasq vulnerabilities

It was discovered that Dnsmasq incorrectly handled certain wildcard synthesized NSEC records. A remote attacker could possibly use this issue to prove the non-existence of hostnames that actually exist. CVE-2017-15107 It was discovered that Dnsmasq incorrectly handled certain large DNS packets. A...

7.5CVSS6.8AI score0.02646EPSS
Exploits1References3
CNVD
CNVD
added 2018/01/25 12:0 a.m.13 views

Unbound Security Bypass Vulnerability

Unbound is a C-based open source recursive DNS server software maintained by NLnet Labs in the Netherlands. A security vulnerability exists in Unbound versions prior to 1.6.8, which stems from the program failing to properly validate wildcard records. An attacker could exploit this vulnerability ...

5.3CVSS6.5AI score0.0263EPSS
Exploits0References1
OSV
OSV
added 2018/01/23 4:29 p.m.2 views

UBUNTU-CVE-2017-15107

A vulnerability was found in the implementation of DNSSEC in Dnsmasq up to and including 2.78. Wildcard synthesized NSEC records could be improperly interpreted to prove the non-existence of hostnames that actually exist...

7.5CVSS6.6AI score0.02646EPSS
Exploits0References4
OSV
OSV
added 2018/01/23 4:29 p.m.4 views

DEBIAN-CVE-2017-15107

A vulnerability was found in the implementation of DNSSEC in Dnsmasq up to and including 2.78. Wildcard synthesized NSEC records could be improperly interpreted to prove the non-existence of hostnames that actually exist...

7.5CVSS7.4AI score0.02646EPSS
Exploits0References1
OSV
OSV
added 2018/01/23 4:29 p.m.1 views

DEBIAN-CVE-2017-15105

A flaw was found in the way unbound before 1.6.8 validated wildcard-synthesized NSEC records. An improperly validated wildcard NSEC record could be used to prove the non-existence NXDOMAIN answer of an existing wildcard record, or trick unbound into accepting a NODATA proof...

5.3CVSS5.3AI score0.0263EPSS
Exploits0References1
OSV
OSV
added 2018/01/23 4:29 p.m.5 views

ALPINE-CVE-2017-15107

A vulnerability was found in the implementation of DNSSEC in Dnsmasq up to and including 2.78. Wildcard synthesized NSEC records could be improperly interpreted to prove the non-existence of hostnames that actually exist...

7.5CVSS6.8AI score0.02646EPSS
Exploits0References1
OSV
OSV
added 2018/01/23 12:0 a.m.4 views

UBUNTU-CVE-2017-15105

A flaw was found in the way unbound before 1.6.8 validated wildcard-synthesized NSEC records. An improperly validated wildcard NSEC record could be used to prove the non-existence NXDOMAIN answer of an existing wildcard record, or trick unbound into accepting a NODATA proof...

5.3CVSS5.7AI score0.0263EPSS
Exploits0References4
Nmap
Nmap
added 2011/03/05 9:16 p.m.935 views

dns-brute NSE Script

Attempts to enumerate DNS hostnames by brute force guessing of common subdomains. With the dns-brute.srv argument, dns-brute will also try to enumerate common DNS SRV records. Wildcard records are listed as "A" and "AAAA" for IPv4 and IPv6 respectively. See also: dns-nsec3-enum.nse...

10CVSS9.3AI score0.99448EPSS
Exploits33
Rows per page
Query Builder