Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:20706
HistoryJul 07, 2011 - 12:00 a.m.

ISC BIND UPDATE请求处理拒绝服务漏洞

2011-07-0700:00:00
Root
www.seebug.org
22

0.058 Low

EPSS

Percentile

92.6%

JSON

BUGTRAQ ID: 48566
CVE ID: CVE-2011-2464

BIND是一个应用非常广泛的DNS协议的实现,由ISC负责维护,具体的开发由Nominum公司完成。

ISC BIND在处理特制的UPDATE请求时存在拒绝服务漏洞,远程攻击者可利用此漏洞影响递归和授权服务器,造成拒绝服务。

此漏洞源于处理UPDATE请求时的错误,通过发送特制的UPDATE请求造成named进程中断。因为漏洞代码所在位置,不可能通过named.conf中配置的ACL或禁用一些功能(在编译时或运行时)来保护BIND。

ISC BIND 9.7.1-P2
ISC BIND 9.7.1-P1
ISC BIND 9.7.1
ISC BIND 9.7.0 P2
ISC BIND 9.7.0
厂商补丁:

ISC

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://www.isc.org/

Related

nessus 24
openvas 31
veracode 1
oraclelinux 2
redhat 1
securityvulns 6
f5 2
cert 1
debiancve 1
centos 1
suse 3
freebsd_advisory 1
cve 1
ubuntucve 1
debian 1
ubuntu 1
prion 1
freebsd 1
slackware 2
fedora 3
cisa 1
threatpost 1
gentoo 1
nessus
nessus
openSUSE Security Update : bind (openSUSE-SU-2011:0788-1)
2014-06-13 00:00:00
RHEL 5 / 6 : bind (RHSA-2011:0926)
2011-07-08 00:00:00
SuSE 11.1 Security Update : bind (SAT Patch Number 4846)
2011-07-11 00:00:00
openvas
openvas
Mandriva Update for bind MDVSA-2011:115 (bind)
2011-07-22 00:00:00
CentOS Update for bind97 CESA-2011:0926 centos5 x86_64
2012-07-30 00:00:00
Slackware Advisory SSA:2011-189-01 bind
2012-09-10 00:00:00
veracode
veracode
Denial Of Service (DoS)
2018-11-15 02:00:40
oraclelinux
oraclelinux
bind security update
2011-07-07 00:00:00
bind security update
2011-11-17 00:00:00
redhat
redhat
(RHSA-2011:0926) Important: bind security update
2011-07-07 00:00:00
securityvulns
securityvulns
[USN-1163-1] Bind vulnerability
2011-07-06 00:00:00
Security Advisory: CVE-2011-2464 - ISC BIND 9 Remote packet Denial of Service against Authoritative and Recursive Servers
2011-07-09 00:00:00
Security Advisory: CVE-2011-2465 ISC BIND 9 Remote Crash with Certain RPZ Configurations
2011-07-09 00:00:00
f5
f5
SOL12986 - BIND vulnerability CVE-2011-2464
2011-07-27 00:00:00
K12986 : BIND vulnerability CVE-2011-2464
2013-09-10 00:00:00
cert
cert
ISC BIND 9 named denial of service vulnerability
2011-07-05 00:00:00
debiancve
debiancve
CVE-2011-2464
2011-07-08 20:55:00
centos
centos
bind97 security update
2011-07-07 22:46:35
suse
suse
bind: fixing remote Denial of Service (CVE-2011-2464) (important)
2011-07-19 01:06:51
Security update for bind (important)
2011-07-19 01:05:59
remote denial of service in bind
2011-07-08 16:20:26
freebsd_advisory
freebsd_advisory
FreeBSD-SA-11:03.bind
2011-09-28 00:00:00
cve
cve
CVE-2011-2464
2011-07-08 20:55:00
ubuntucve
ubuntucve
CVE-2011-2464
2011-07-05 00:00:00
debian
debian
[SECURITY] [DSA 2272-1] bind9 security update
2011-07-05 18:46:15
ubuntu
ubuntu
Bind vulnerability
2011-07-05 00:00:00
prion
prion
Cross site request forgery (csrf)
2011-07-08 20:55:00
freebsd
freebsd
BIND -- Remote DoS against authoritative and recursive servers
2011-07-05 00:00:00
slackware
slackware
[slackware-security] bind
2011-07-08 19:18:53
[slackware-security] bind
2011-08-13 00:34:14
fedora
fedora
[SECURITY] Fedora 14 Update: bind-9.7.4-0.3.b1.fc14
2011-07-22 19:32:09
[SECURITY] Fedora 15 Update: bind-9.8.0-7.P4.fc15
2011-07-12 05:03:49
[SECURITY] Fedora 14 Update: bind-9.7.4-2.P1.fc14
2011-11-25 23:23:58
cisa
cisa
Internet System Consortium releases BIND Patches
2011-07-05 00:00:00
threatpost
threatpost
New BIND Release Fixes High-Severity Remote Bugs
2011-07-06 19:42:07
gentoo
gentoo
BIND: Multiple vulnerabilities
2012-06-02 00:00:00

0.058 Low

EPSS

Percentile

92.6%

JSON
Related for SSV:20706
nessus24openvas31veracode1oraclelinux2redhat1securityvulns6f52cert1debiancve1centos1suse3freebsd_advisory1cve1ubuntucve1debian1ubuntu1prion1freebsd1slackware2fedora3cisa1threatpost1gentoo1