Bind Security Vulnerabilities and Issues — Bind CVE List

Lucene search

IscBind

8 matches found

CVE•added 2006/03/03 11:2 a.m.•13466 views

CVE-2006-0987

The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses, which allows remote attackers to cause a denial of service (traffic amplification) via DNS queries with...

5CVSS9.1AI score0.27831EPSS

CVE•added 2006/09/06 12:4 a.m.•108 views

CVE-2006-4095

BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via certain SIG queries, which cause an assertion failure when multiple RRsets are returned.

7.5CVSS7.4AI score0.09412EPSS

CVE•added 2006/09/06 12:4 a.m.•70 views

CVE-2006-4096

BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via a flood of recursive queries, which cause an INSIST failure when the response is received after the recursion queue is empty.

5CVSS7.2AI score0.24501EPSS

CVE•added 2006/05/23 4:0 p.m.•61 views

CVE-2002-2212

The DNS resolver in unspecified versions of Fujitsu UXP/V, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed response...

5CVSS6.8AI score0.02585EPSS

CVE•added 2006/05/23 4:0 p.m.•58 views

CVE-2002-2211

BIND 4 and BIND 8, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed responses, which increases the possibility of su...

5CVSS6.7AI score0.03336EPSS

CVE•added 2006/04/27 10:2 p.m.•54 views

CVE-2006-2073

Unspecified vulnerability in ISC BIND allows remote attackers to cause a denial of service via a crafted DNS message with a "broken" TSIG, as demonstrated by the OUSPG PROTOS DNS test suite.

5CVSS7.2AI score0.06776EPSS

CVE•added 2006/05/23 4:0 p.m.•42 views

CVE-2002-2213

The DNS resolver in unspecified versions of Infoblox DNS One, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed respo...

5CVSS6.8AI score0.02585EPSS

CVE•added 2006/02/02 11:2 a.m.•38 views

CVE-2006-0527

BIND 4 (BIND4) and BIND 8 (BIND8), if used as a target forwarder, allows remote attackers to gain privileged access via a "Kashpureff-style DNS cache corruption" attack.

7.5CVSS6.8AI score0.06541EPSS