CVE-2007-0493

2007-01-2500:00:00

ubuntu.com

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.223 Low

EPSS

Percentile

96.5%

JSON

Use-after-free vulnerability in ISC BIND 9.3.0 up to 9.3.3, 9.4.0a1 up to
9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 (Bind Forum only)
allows remote attackers to cause a denial of service (named daemon crash)
via unspecified vectors that cause named to “dereference a freed fetch
context.”

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchbind9< 9.3.2-2ubuntu1.3UNKNOWN
ubuntu6.10noarchbind9< 9.3.2-2ubuntu3.2UNKNOWN
ubuntu7.04noarchbind9< 9.3.4-2ubuntu2.1UNKNOWN