Lucene search

Veracode Vulnerability DatabaseVERACODE:23017

HistoryApr 10, 2020 - 12:12 a.m.

Denial Of Service (DoS)

2020-04-1000:12:33

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON

ISC BIND (Berkeley Internet Name Domain) is vulnerable to Denial Of Service (DoS). A use-after-free flaw was found in BIND. On servers that have recursion enabled, this could allow a remote attacker to cause a denial of service.

CPENameOperatorVersion
bindeq9.3.3__7.el5
bindeq9.3.3__7.el5

CPE	Name	Operator	Version
	bind	eq	9.3.3__7.el5
	bind	eq	9.3.3__7.el5

References

docs.info.apple.com/article.html?artnum=305530

fedoranews.org/cms/node/2507

fedoranews.org/cms/node/2537

ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2007-003.txt.asc

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01070495

lists.apple.com/archives/security-announce/2007/May/msg00004.html

lists.grok.org.uk/pipermail/full-disclosure/2007-January/052018.html

lists.suse.com/archive/suse-security-announce/2007-Jan/0016.html

marc.info/?l=bind-announce&m=116968519321296&w=2

marc.theaimsgroup.com/?l=bind-announce&m=116968519300764

secunia.com/advisories/23904

secunia.com/advisories/23924

secunia.com/advisories/23943

secunia.com/advisories/23972

secunia.com/advisories/23974

secunia.com/advisories/23977

secunia.com/advisories/24014

secunia.com/advisories/24048

secunia.com/advisories/24054

secunia.com/advisories/24129

secunia.com/advisories/24203

secunia.com/advisories/24930

secunia.com/advisories/24950

secunia.com/advisories/25402

secunia.com/advisories/25649

security.freebsd.org/advisories/FreeBSD-SA-07:02.bind.asc

security.gentoo.org/glsa/glsa-200702-06.xml

securitytracker.com/id?1017561

slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.494157

www.isc.org/index.pl?/sw/bind/bind-security.php

www.isc.org/index.pl?/sw/bind/view/?release=9.2.8

www.isc.org/index.pl?/sw/bind/view/?release=9.3.4

www.mandriva.com/security/advisories?name=MDKSA-2007:030

www.openpkg.com/security/advisories/OpenPKG-SA-2007.007.html

www.redhat.com/security/updates/classification/#moderate

www.redhat.com/support/errata/RHSA-2007-0057.html

www.securityfocus.com/archive/1/458066/100/0/threaded

www.securityfocus.com/bid/22229

www.trustix.org/errata/2007/0005

www.ubuntu.com/usn/usn-418-1

www.vupen.com/english/advisories/2007/0349

www.vupen.com/english/advisories/2007/1401

www.vupen.com/english/advisories/2007/1939

www.vupen.com/english/advisories/2007/2163

www.vupen.com/english/advisories/2007/2315

access.redhat.com/errata/RHSA-2007:0057

access.redhat.com/security/cve/CVE-2007-0493

bugzilla.redhat.com/show_bug.cgi?id=230003

h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04952488

issues.rpath.com/browse/RPL-989

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9614

www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00967144

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON

Related for VERACODE:23017