Knowledge Base ISC Main Website Ask a Question/Contact ISC
Quick Jump Menu
Categories
There are no subcategories in this category.
1 CVE-2005-0034: BIND: Self-check failing

The DNSSEC validator can cause the server to exit. CVE: CVE-2005-0034 VU#938617 Posting date: 25 Jan 2005 Program Impacted: BIND Versions affected: 9.3.0 Severity: Low Exploitable: Remotely Description: An incorrect assumption in the validator (authvalidated)…

2 CVE-2002-0400: DoS internal consistency check (DoS_findtype)

A logic error can cause server failure, disabling name service. CVE: CVE-2002-0400 VU#739123 Posting date: 04 Jun 2002 Program Impacted: BIND Versions affected: 9.0 - 9.2.0 Severity: Serious Exploitable: Remotely Description: BIND 9 before 9.2.1 allows remote…

3 CVE-2010-3613: cache incorrectly allows a ncache entry and a rrsig for the same type

Failure to clear existing RRSIG records when a NO DATA is negatively cached could cause subsequent lookups to crash named CVE: CVE-2010-3613 VU#706148 Posting date: 01 Dec 2010 Program Impacted: BIND Versions affected: 9.0.x to 9.7.2-P2, 9.4-ESV to 9.4-ESV-R3,…

4 CVE-2010-3615: allow-query processed incorrectly

Using "allow-query" in the "options" or "view" statements to restrict access to authoritative zones has no effect. CVE: CVE-2010-3615 VU#510208 Posting date: 01 Dec 2010 Program Impacted: BIND Versions affected: 9.7.2-P2 Severity: High Exploitable: Remotely…

5 CVE-2010-3614: Key algorithm rollover bug in bind9

named (acting as DNSSEC validating resolver) could incorrectly mark zone data as insecure when the zone being queried is undergoing a key algorithm rollover. CVE: CVE-2010-3614 VU#837744 Posting date: 01 Dec 2010 Program Impacted: BIND Versions affected:…

6 CVE-2010-3762: failure to handle bad signatures if multiple trust anchors configured

This notification is not an actual Security Vulnerability, but is included here due to user concerns. ISC's evaluation of this issue according to the CVSS rating system did not determine this issue to need a security release. CVE: CVE-2010-3762 Document Version:…

7 CVE-2010-0218: Unexpected ACL Behavior in BIND 9.7.2

Wrong ACL applied. CVE: CVE-2010-0218 Posting date: 28 Sep 2010 Program Impacted: BIND Versions affected: 9.7.2 through 9.7.2-P1 Severity: Low Exploitable: Remotely Description: There was a flaw where the wrong ACL was applied. This flaw could allow access…

8 CVE-2010-0213: RRSIG query handling bug in BIND 9.7.1

If a query is made explicitly for a record of type 'RRSIG' to a validating recursive server running BIND 9.7.1 or 9.7.1-P1, and the server has one or more trust anchors configured statically and/or via DLV, then if the answer is not already in cache, the…

9 CVE-2010-0097: BIND 9 DNSSEC validation code could cause bogus NXDOMAIN responses

CVE: CVE-2010-0097 VU#360341 Posting date: 19 Jan 2010 Program Impacted: BIND Versions affected: 9.0.x, 9.1.x, 9.2.x, 9.3.x, 9.4.0 -> 9.4.3-P4, 9.5.0 -> 9.5.2-P1, 9.6.0 -> 9.6.1-P2 Severity: Low Exploitable: Remotely Description: There was an error…

10 CVE-2009-4022: BIND 9 Cache Update from Additional Section

A validating recursive nameserver may incorrectly cache records from the additional section of a query response. If the nameserver is authoritative-only this will not occur. CVE: CVE-2009-4022 VU#418861 Posting date: 23 Nov 2009 Program Impacted: BIND Versions…

1 2 Next