This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:isc:bind
Detail
VendorIscFirst view 1997-07-01
ProductBindLast view2019-04-09
VersionTypeApplication
Edition 
Language 
Update 

Activity : Overall

COMMON PLATFORM ENUMERATION : Repartition per Version

CPE NameAffected CVE
cpe:/a:isc:bind:9.4.044
cpe:/a:isc:bind:9.4.0:rc140
cpe:/a:isc:bind:9.4.140
cpe:/a:isc:bind:9.5.040
cpe:/a:isc:bind:9.7.139
Hide | Show 45 More...
CPE NameAffected CVE
cpe:/a:isc:bind:9.3.239
cpe:/a:isc:bind:9.4.239
cpe:/a:isc:bind:9.7.039
cpe:/a:isc:bind:9.8.038
cpe:/a:isc:bind:9.4.338
cpe:/a:isc:bind:9.7.238
cpe:/a:isc:bind:9.7.1:p138
cpe:/a:isc:bind:9.6.038
cpe:/a:isc:bind:9.7.2:p238
cpe:/a:isc:bind:9.7.0:b138
cpe:/a:isc:bind:9.137
cpe:/a:isc:bind:9.7.0:p137
cpe:/a:isc:bind:9.2.637
cpe:/a:isc:bind:9.3.137
cpe:/a:isc:bind:9.337
cpe:/a:isc:bind:9.7.1:rc137
cpe:/a:isc:bind:9.7.0:rc237
cpe:/a:isc:bind:9.8.0:p137
cpe:/a:isc:bind:9.2.337
cpe:/a:isc:bind:9.7.0:rc137
cpe:/a:isc:bind:9.7.2:p137
cpe:/a:isc:bind:9.7.1:p237
cpe:/a:isc:bind:9.3.037
cpe:/a:isc:bind:9.2.436
cpe:/a:isc:bind:9.2.236
cpe:/a:isc:bind:9.4.3:rc136
cpe:/a:isc:bind:9.2.536
cpe:/a:isc:bind:9.036
cpe:/a:isc:bind:9.2.136
cpe:/a:isc:bind:9.6.0:rc136
cpe:/a:isc:bind:9.6.0:rc236
cpe:/a:isc:bind:9.1.236
cpe:/a:isc:bind:9.6.0:p136
cpe:/a:isc:bind:9.2.036
cpe:/a:isc:bind:9.7.0:p236
cpe:/a:isc:bind:9.1.136
cpe:/a:isc:bind:9.8.0:p236
cpe:/a:isc:bind:9.8.0:b136
cpe:/a:isc:bind:9.8.0:a136
cpe:/a:isc:bind:9.1.335
cpe:/a:isc:bind:9.7.2:rc135
cpe:/a:isc:bind:9.435
cpe:/a:isc:bind:9.7.2:p335
cpe:/a:isc:bind:9.7.335
cpe:/a:isc:bind:9.6.135

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
52019-04-09CVE-2017-3139NetworkLowNone Requ...
42019-01-16CVE-2018-5741NetworkLowRequires ...
52019-01-16CVE-2018-5740NetworkLowNone Requ...
52019-01-16CVE-2018-5738NetworkLowNone Requ...
52019-01-16CVE-2018-5737NetworkLowNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
3.52019-01-16CVE-2018-5736NetworkMediumRequires ...
52019-01-16CVE-2018-5734NetworkLowNone Requ...
52019-01-16CVE-2017-3145NetworkLowNone Requ...
4.32019-01-16CVE-2017-3143NetworkMediumNone Requ...
4.32019-01-16CVE-2017-3142NetworkMediumNone Requ...
7.22019-01-16CVE-2017-3141LocalLowNone Requ...
4.32019-01-16CVE-2017-3140NetworkMediumNone Requ...
3.52019-01-16CVE-2017-3138NetworkMediumRequires ...
52019-01-16CVE-2017-3137NetworkLowNone Requ...
4.32019-01-16CVE-2017-3136NetworkMediumNone Requ...
4.32019-01-16CVE-2017-3135NetworkMediumNone Requ...
4.32019-01-16CVE-2016-9778NetworkMediumNone Requ...
52017-01-12CVE-2016-9444NetworkLowNone Requ...
52017-01-12CVE-2016-9147NetworkLowNone Requ...
52017-01-12CVE-2016-9131NetworkLowNone Requ...
52016-11-02CVE-2016-8864NetworkLowNone Requ...
52016-10-21CVE-2016-2848NetworkLowNone Requ...
7.82016-09-28CVE-2016-2776NetworkLowNone Requ...
4.32016-07-19CVE-2016-2775NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
40% (28)CWE-20Improper Input Validation
11% (8)CWE-617Reachable Assertion
7% (5)CWE-264Permissions, Privileges, and Access Controls
5% (4)CWE-399Resource Management Errors
5% (4)CWE-189Numeric Errors
Hide | Show 15 More...
%idName
5% (4)CWE-19Data Handling
2% (2)CWE-362Race Condition
2% (2)CWE-287Improper Authentication
2% (2)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
1% (1)CWE-476NULL Pointer Dereference
1% (1)CWE-428Unquoted Search Path or Element
1% (1)CWE-416Use After Free
1% (1)CWE-400Uncontrolled Resource Consumption ('Resource Exhaustion')
1% (1)CWE-388Error Handling
1% (1)CWE-331Insufficient Entropy
1% (1)CWE-284Access Control (Authorization) Issues
1% (1)CWE-254Security Features
1% (1)CWE-200Information Exposure
1% (1)CWE-17Code
1% (1)CWE-16Configuration

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-1Accessing Functionality Not Properly Constrained by ACLs
CAPEC-13Subverting Environment Variable Values
CAPEC-17Accessing, Modifying or Executing Executable Files
CAPEC-19Embedding Scripts within Scripts
CAPEC-39Manipulating Opaque Client-based Data Tokens
Hide | Show 9 More...
idName
CAPEC-45Buffer Overflow via Symbolic Links
CAPEC-51Poison Web Service Registry
CAPEC-59Session Credential Falsification through Prediction
CAPEC-60Reusing Session IDs (aka Session Replay)
CAPEC-76Manipulating Input to File System Calls
CAPEC-77Manipulating User-Controlled Variables
CAPEC-81Web Logs Tampering
CAPEC-87Forceful Browsing
CAPEC-104Cross Zone Scripting

Open Source Vulnerability Database (OSVDB)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
77159ISC BIND Recursive Query Parsing Remote DoS
73605ISC BIND UPDATE Request Parsing Remote DoS
73604ISC BIND Response Policy Zones (RPZ) DNAME / CNAME Parsing Remote DoS
72540ISC BIND Caching Resolver Large RRSIG RRsets Negative Caching Remote DoS
72539ISC BIND Authoritative Server Crafted IXFR / DDNS Query Update Deadlock DoS
Hide | Show 20 More...
idDescription
72172ISC BIND Response Policy Zones RRSIG Query Assertion Failure DoS
69568ISC BIND named allow-query ACL Restriction Bypass
69559ISC BIND named Key Algorithm Rollover Weakness
69558ISC BIND named RRSIG Negative Caching DoS
68271ISC BIND DNSSEC Query Validation Response Signature Handling Remote DoS
68270ISC BIND ACL Application Weakness Cache Recursion Access Restriction Bypass
66395ISC BIND RRSIG Requests Infinite Loop DoS
62008ISC BIND Secure Response Refetch Weakness Unspecified Issue
62007ISC BIND Recursive Client Query CNAME / DNAME Response DNS Cache Poisoning
61853ISC BIND DNSSEC Validation Crafted NXDOMAIN Request Cache Poisoning
60493ISC BIND DNSSEC Recursive Query Additional Section Cache Poisoning
59272ISC BIND named Multiple Symlink Arbitrary File Overwrite
57060ISC BIND DNS Message Malformed TSIG Remote DoS
56584ISC BIND Dynamic Update Message Handling Remote DoS
53917HP Multiple Products DNS Query ID Field Prediction Cache Poisoning
53530Check Point DNS Query ID Field Prediction Cache Poisoning
53299GNU DNS Resolver Library (glibc) Multiple DNS Resolver Functions Remote Overflow
53298BSD DNS Resolver Library (libc) Multiple DNS Resolver Functions Remote Overflow
53115ISC BIND EVP_VerifyFinal() / DSA_do_verify() SSL/TLS Signature Validation Wea...
51368OpenSSL DSA_verify Function SSL/TLS Signature Validation Weakness

ExploitDB Exploits

idDescription
6130BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (c)
6123BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (py)
6122BIND 9.4.1-9.4.2 Remote DNS Cache Poisoning Flaw Exploit (meta)

OpenVAS Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-12-31Name : Fedora Update for bind FEDORA-2012-19822
File : nvt/gb_fedora_2012_19822_bind_fc16.nasl
2012-12-14Name : Fedora Update for bind FEDORA-2012-19830
File : nvt/gb_fedora_2012_19830_bind_fc17.nasl
2012-12-13Name : SuSE Update for bind openSUSE-SU-2012:0722-1 (bind)
File : nvt/gb_suse_2012_0722_1.nasl
2012-12-13Name : SuSE Update for bind openSUSE-SU-2012:1192-1 (bind)
File : nvt/gb_suse_2012_1192_1.nasl
2012-12-13Name : SuSE Update for bind openSUSE-SU-2012:1372-1 (bind)
File : nvt/gb_suse_2012_1372_1.nasl
Hide | Show 20 More...
idDescription
2012-12-10Name : RedHat Update for bind RHSA-2012:1549-01
File : nvt/gb_RHSA-2012_1549-01_bind.nasl
2012-12-10Name : CentOS Update for bind CESA-2012:1549 centos6
File : nvt/gb_CESA-2012_1549_bind_centos6.nasl
2012-12-10Name : Ubuntu Update for bind9 USN-1657-1
File : nvt/gb_ubuntu_USN_1657_1.nasl
2012-12-06Name : Mandriva Update for bind MDVSA-2012:177 (bind)
File : nvt/gb_mandriva_MDVSA_2012_177.nasl
2012-11-16Name : VMSA-2012-0016: VMware security updates for vSphere API and ESX Service Console
File : nvt/gb_VMSA-2012-0016.nasl
2012-10-29Name : Debian Security Advisory DSA 2560-1 (bind9)
File : nvt/deb_2560_1.nasl
2012-10-23Name : Fedora Update for bind-dyndb-ldap FEDORA-2012-15965
File : nvt/gb_fedora_2012_15965_bind-dyndb-ldap_fc17.nasl
2012-10-23Name : Fedora Update for bind FEDORA-2012-15965
File : nvt/gb_fedora_2012_15965_bind_fc17.nasl
2012-10-23Name : Fedora Update for dhcp FEDORA-2012-15965
File : nvt/gb_fedora_2012_15965_dhcp_fc17.nasl
2012-10-23Name : Fedora Update for dnsperf FEDORA-2012-15965
File : nvt/gb_fedora_2012_15965_dnsperf_fc17.nasl
2012-10-23Name : Fedora Update for bind-dyndb-ldap FEDORA-2012-15981
File : nvt/gb_fedora_2012_15981_bind-dyndb-ldap_fc16.nasl
2012-10-23Name : Fedora Update for bind FEDORA-2012-15981
File : nvt/gb_fedora_2012_15981_bind_fc16.nasl
2012-10-23Name : Fedora Update for dhcp FEDORA-2012-15981
File : nvt/gb_fedora_2012_15981_dhcp_fc16.nasl
2012-10-23Name : Fedora Update for dnsperf FEDORA-2012-15981
File : nvt/gb_fedora_2012_15981_dnsperf_fc16.nasl
2012-10-16Name : RedHat Update for bind RHSA-2012:1363-01
File : nvt/gb_RHSA-2012_1363-01_bind.nasl
2012-10-16Name : RedHat Update for bind97 RHSA-2012:1364-01
File : nvt/gb_RHSA-2012_1364-01_bind97.nasl
2012-10-16Name : CentOS Update for bind CESA-2012:1363 centos5
File : nvt/gb_CESA-2012_1363_bind_centos5.nasl
2012-10-16Name : CentOS Update for bind CESA-2012:1363 centos6
File : nvt/gb_CESA-2012_1363_bind_centos6.nasl
2012-10-16Name : CentOS Update for bind97 CESA-2012:1364 centos5
File : nvt/gb_CESA-2012_1364_bind97_centos5.nasl
2012-10-13Name : FreeBSD Ports: bind99
File : nvt/freebsd_bind992.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2015-A-0208Multiple Vulnerabilities in ISC BIND
Severity : Category I - VMSKEY : V0061377
2015-B-0099McAfee Firewall Enterprise Denial of Service Vulnerability
Severity : Category I - VMSKEY : V0061291
2014-A-0086Multiple Vulnerabilities in ISC BIND
Severity : Category I - VMSKEY : V0052635
2013-A-0212ISC BIND Security Bypass Vulnerability
Severity : Category I - VMSKEY : V0042297
2013-A-0179Apple Mac OS X Security Update 2013-004
Severity : Category I - VMSKEY : V0040373
Hide | Show 5 More...
idDescription
2013-A-0151ISC BIND 9 Remote Denial of Service Vulnerability
Severity : Category I - VMSKEY : V0039823
2013-A-0031Multiple Security Vulnerabilities in VMware ESX 4.1 and ESXi 4.1
Severity : Category I - VMSKEY : V0036787
2012-A-0189Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity : Category I - VMSKEY : V0035032
2011-A-0066Multiple Vulnerabilities in VMware Products
Severity : Category I - VMSKEY : V0027158
2008-A-0045DNS Protocol Cache Poisoning Vulnerability
Severity : Category I - VMSKEY : V0016170

Snort® IPS/IDS

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2019-09-24ISC Bind libdns EDNS option handling denial of service attempt
RuleID : 51126 - Type : SERVER-OTHER - Revision : 1
2018-03-27ISC BIND malformed data channel authentication message denial of service attempt
RuleID : 45738 - Type : SERVER-OTHER - Revision : 1
2017-12-19ISC BIND 9 DNS rdata length handling remote denial of service attempt
RuleID : 44879 - Type : SERVER-OTHER - Revision : 1
2017-09-06ISC BIND malformed control channel authentication message denial of service a...
RuleID : 43846 - Type : SERVER-OTHER - Revision : 2
2017-06-06ISC BIND unexpected DNAME CNAME ordering denial of service attempt
RuleID : 42458 - Type : PROTOCOL-DNS - Revision : 2
Hide | Show 20 More...
DateDescription
2016-11-30ISC BIND 9 DNS query overly long name denial of service attempt
RuleID : 40579 - Type : SERVER-OTHER - Revision : 2
2016-11-08ISC BIND DNS duplicate cookie denial of service attempt
RuleID : 40362 - Type : PROTOCOL-DNS - Revision : 1
2016-11-08ISC BIND isc__buffer_add assertion failure denial of service attempt
RuleID : 40344 - Type : PROTOCOL-DNS - Revision : 2
2016-05-27ISC BIND malformed control channel authentication message denial of service a...
RuleID : 38622 - Type : SERVER-OTHER - Revision : 4
2016-04-21ISC BIND totext_in_apl denial of service attempt
RuleID : 38284 - Type : PROTOCOL-DNS - Revision : 1
2016-04-21ISC BIND totext_in_apl denial of service attempt
RuleID : 38283 - Type : PROTOCOL-DNS - Revision : 1
2016-04-21ISC BIND totext_in_apl denial of service attempt
RuleID : 38282 - Type : PROTOCOL-DNS - Revision : 1
2016-04-21ISC BIND totext_in_apl denial of service attempt
RuleID : 38281 - Type : PROTOCOL-DNS - Revision : 1
2016-03-14ISC BIND zero length OPENPGPKEY rdata response attempt
RuleID : 36130 - Type : PROTOCOL-DNS - Revision : 4
2015-10-20ISC BIND DNSSEC response unsupported cryptographic algorithm attempt
RuleID : 36056 - Type : PROTOCOL-DNS - Revision : 2
2015-10-20ISC BIND DNSSEC response unsupported DNSKEY cryptographic algorithm attempt
RuleID : 36055 - Type : PROTOCOL-DNS - Revision : 3
2015-09-03ISC BIND TKEY query processing denial of service attempt
RuleID : 35943 - Type : PROTOCOL-DNS - Revision : 2
2015-09-03ISC BIND TKEY query processing denial of service attempt
RuleID : 35942 - Type : PROTOCOL-DNS - Revision : 2
2015-09-03ISC BIND TKEY Query denial of service attempt
RuleID : 35425 - Type : SERVER-OTHER - Revision : 3
2015-09-03ISC BIND TKEY Query denial of service attempt
RuleID : 35424 - Type : SERVER-OTHER - Revision : 3
2015-03-31ISC BIND recursive resolver resource consumption denial of service attempt
RuleID : 33583 - Type : PROTOCOL-DNS - Revision : 8
2014-01-10UDP inverse query overflow
RuleID : 3154-community - Type : PROTOCOL-DNS - Revision : 12
2014-01-10UDP inverse query overflow
RuleID : 3154 - Type : PROTOCOL-DNS - Revision : 12
2014-01-10TCP inverse query overflow
RuleID : 3153-community - Type : PROTOCOL-DNS - Revision : 9
2014-01-10TCP inverse query overflow
RuleID : 3153 - Type : PROTOCOL-DNS - Revision : 9

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2019-01-10Name : The remote device is affected by multiple vulnerabilities.
File : juniper_space_jsa10917_184R1.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-f22b937f52.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-a54e46032f.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-5417ca3713.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-bfec61fb2f.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2018-11-28Name : The remote name server is affected by a policy bypass which enables an unauth...
File : bind9_CVE-2018-5741.nasl - Type : ACT_GATHER_INFO
2018-11-27Name : The remote Virtuozzo host is missing a security update.
File : Virtuozzo_VZLSA-2017-1679.nasl - Type : ACT_GATHER_INFO
2018-11-05Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL98528405.nasl - Type : ACT_GATHER_INFO
2018-11-02Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL08613310.nasl - Type : ACT_GATHER_INFO
2018-10-26Name : The remote EulerOS Virtualization host is missing a security update.
File : EulerOS_SA-2018-1328.nasl - Type : ACT_GATHER_INFO
2018-10-26Name : The remote EulerOS Virtualization host is missing a security update.
File : EulerOS_SA-2018-1343.nasl - Type : ACT_GATHER_INFO
2018-10-15Name : The remote Fedora host is missing a security update.
File : fedora_2018-54d84b0b0c.nasl - Type : ACT_GATHER_INFO
2018-09-27Name : The remote EulerOS host is missing a security update.
File : EulerOS_SA-2018-1281.nasl - Type : ACT_GATHER_INFO
2018-09-27Name : The remote EulerOS host is missing a security update.
File : EulerOS_SA-2018-1282.nasl - Type : ACT_GATHER_INFO
2018-09-27Name : The remote Amazon Linux 2 host is missing a security update.
File : al2_ALAS-2018-1082.nasl - Type : ACT_GATHER_INFO
2018-09-20Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2018-1082.nasl - Type : ACT_GATHER_INFO
2018-08-31Name : The remote Debian host is missing a security update.
File : debian_DLA-1485.nasl - Type : ACT_GATHER_INFO
2018-08-29Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2018-2570.nasl - Type : ACT_GATHER_INFO
2018-08-29Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2018-2571.nasl - Type : ACT_GATHER_INFO
2018-08-23Name : The remote Fedora host is missing a security update.
File : fedora_2018-90f8fbd58e.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2017-0021.nasl - Type : ACT_GATHER_INFO
2018-08-16Name : The remote name server is affected by a denial of service vulnerability.
File : bind9_9122_p1.nasl - Type : ACT_GATHER_INFO
2018-08-13Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2018-222-01.nasl - Type : ACT_GATHER_INFO
2018-08-02Name : The remote Fedora host is missing one or more security updates.
File : fedora_2018-c0f12f789e.nasl - Type : ACT_GATHER_INFO
2018-07-12Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2018-192-01.nasl - Type : ACT_GATHER_INFO