Unbound@1.0.2 Security Vulnerabilities and Issues — Unbound@1.0.2 CVE List

Lucene search

NlnetlabsUnbound1.0.2

4 matches found

CVE•added 2011/06/02 8:55 p.m.•69 views

CVE-2009-4008

Unbound before 1.4.4 does not send responses for signed zones after mishandling an unspecified query, which allows remote attackers to cause a denial of service (DNSSEC outage) via a crafted query.

5CVSS6.5AI score0.00202EPSS

CVE•added 2009/10/13 10:30 a.m.•53 views

CVE-2009-3602

Unbound before 1.3.4 does not properly verify signatures for NSEC3 records, which allows remote attackers to cause secure delegations to be downgraded via DNS spoofing or other DNS-related attacks in conjunction with crafted delegation responses.

7.5CVSS6.3AI score0.01644EPSS

CVE•added 2010/03/16 7:0 p.m.•46 views

CVE-2010-0969

Unbound before 1.4.3 does not properly align structures on 64-bit platforms, which allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.

5CVSS6.5AI score0.01382EPSS

CVE•added 2011/05/31 8:55 p.m.•40 views

CVE-2011-1922

daemon/worker.c in Unbound 1.x before 1.4.10, when debugging functionality and the interface-automatic option are enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted DNS request that triggers improper error handling.

4.3CVSS6.3AI score0.01218EPSS