4.3 - VU#360341

Executive Summary

Summary
Title	BIND 9 DNSSEC validation code could cause fake NXDOMAIN responses

Informations
Name	VU#360341	First vendor Publication	2010-01-19
Vendor	VU-CERT	Last vendor Modification	2010-01-19
Severity (Vendor)	N/A	Revision	M

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:N/I:P/A:N)
Cvss Base Score	4.3	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Vulnerability Note VU#360341

BIND 9 DNSSEC validation code could cause fake NXDOMAIN responses

Overview

A vulnerability exists in the BIND 9 DNSSEC validation code that could be used by an attacker to generate fake NXDOMAIN responses.

I. Description

BIND 9 contains a vulnerability in DNSSEC validation code. According to ISC:

There was an error in the DNSSEC NSEC/NSEC3 validation code that could cause bogus NXDOMAIN responses (that is, NXDOMAIN responses for records proven by NSEC or NSEC3 to exist) to be cached as if they had validated correctly, so that future queries to the resolver would return the bogus NXDOMAIN with the AD flag set.

This issue affects BIND versions 9.0.x, 9.1.x, 9.2.x, 9.3.x, 9.4.0 -> 9.4.3-P4, 9.5.0 -> 9.5.2-P1, 9.6.0 -> 9.6.1-P2

II. Impact

An attacker may be able to add fake NXDOMAIN records to a resolver's cache.

III. Solution

Upgrade BIND to version 9.4.3-P5, 9.5.2-P2 or 9.6.1-P3.

Systems Affected

Vendor	Status	Date Notified	Date Updated
Alcatel-Lucent	Unknown	2010-01-14	2010-01-14
Apple Inc.	Unknown	2010-01-14	2010-01-14
BlueCat Networks, Inc.	Unknown	2010-01-14	2010-01-14
Check Point Software Technologies	Unknown	2010-01-14	2010-01-14
Conectiva Inc.	Unknown	2010-01-14	2010-01-14
Cray Inc.	Unknown	2010-01-14	2010-01-14
Debian GNU/Linux	Unknown	2010-01-14	2010-01-14
DragonFly BSD Project	Unknown	2010-01-14	2010-01-14
EMC Corporation	Unknown	2010-01-14	2010-01-14
Engarde Secure Linux	Unknown	2010-01-14	2010-01-14
Ericsson	Unknown	2010-01-14	2010-01-14
F5 Networks, Inc.	Unknown	2010-01-14	2010-01-14
Fedora Project	Unknown	2010-01-14	2010-01-14
FreeBSD Project	Unknown	2010-01-14	2010-01-14
Fujitsu	Unknown	2010-01-14	2010-01-14
Gentoo Linux	Unknown	2010-01-14	2010-01-14
Gnu ADNS	Unknown	2010-01-14	2010-01-14
GNU glibc	Unknown	2010-01-14	2010-01-14
Hewlett-Packard Company	Unknown	2010-01-14	2010-01-14
Hitachi	Unknown	2010-01-14	2010-01-14
IBM Corporation	Unknown	2010-01-14	2010-01-14
IBM Corporation (zseries)	Unknown	2010-01-14	2010-01-14
IBM eServer	Unknown	2010-01-14	2010-01-14
Infoblox	Unknown	2010-01-14	2010-01-14
Internet Systems Consortium	Unknown	2010-01-14	2010-01-14
Internet Systems Consortium	Vulnerable		2010-01-19
Juniper Networks, Inc.	Unknown	2010-01-14	2010-01-14
Mandriva S. A.	Unknown	2010-01-14	2010-01-14
McAfee	Unknown	2010-01-14	2010-01-14
Men & Mice	Unknown	2010-01-14	2010-01-14
Microsoft Corporation	Unknown	2010-01-14	2010-01-14
MontaVista Software, Inc.	Unknown	2010-01-14	2010-01-14
NEC Corporation	Unknown	2010-01-14	2010-01-14
NetBSD	Unknown	2010-01-14	2010-01-14
Nokia	Unknown	2010-01-14	2010-01-14
Nominum	Unknown	2010-01-14	2010-01-14
Nortel Networks, Inc.	Unknown	2010-01-14	2010-01-14
Novell, Inc.	Unknown	2010-01-14	2010-01-14
OpenBSD	Unknown	2010-01-14	2010-01-14
Openwall GNU/*/Linux	Unknown	2010-01-14	2010-01-14
QNX Software Systems Inc.	Unknown	2010-01-14	2010-01-14
Red Hat, Inc.	Unknown	2010-01-14	2010-01-14
SafeNet	Unknown	2010-01-14	2010-01-14
Shadowsupport	Unknown	2010-01-14	2010-01-14
Silicon Graphics, Inc.	Unknown	2010-01-14	2010-01-14
Slackware Linux Inc.	Unknown	2010-01-14	2010-01-14
Sony Corporation	Unknown	2010-01-14	2010-01-14
Sun Microsystems, Inc.	Unknown	2010-01-14	2010-01-14
SUSE Linux	Unknown	2010-01-14	2010-01-14
The SCO Group	Unknown	2010-01-14	2010-01-14
Turbolinux	Unknown	2010-01-14	2010-01-14
Ubuntu	Unknown	2010-01-14	2010-01-14
Unisys	Unknown	2010-01-14	2010-01-14
Wind River Systems, Inc.	Unknown	2010-01-14	2010-01-14

References

https://www.isc.org/advisories/CVE-2010-0097

Credit

This issue was reported by ISC.

This document was written by David Warren.

Other Information

Date Public:	2010-01-19
Date First Published:	2010-01-19
Date Last Updated:	2010-01-19
CERT Advisory:
CVE-ID(s):	CVE-2010-0097
NVD-ID(s):	CVE-2010-0097
US-CERT Technical Alerts:
Metric:	0.00
Document Revision:	12

Original Source

Url : http://www.kb.cert.org/vuls/id/360341

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-20	Improper Input Validation

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:12205

Oval ID:	oval:org.mitre.oval:def:12205
Title:	HP-UX Running BIND, Remote Compromise of NXDOMAIN Responses.
Description:	ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P5, 9.5 before 9.5.2-P2, 9.6 before 9.6.1-P3, and 9.7.0 beta does not properly validate DNSSEC (1) NSEC and (2) NSEC3 records, which allows remote attackers to add the Authenticated Data (AD) flag to a forged NXDOMAIN response for an existing domain.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-0097	Version:	11
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02519 HP Release B.11.23 AND filesets tests BindUpgrade.BIND-UPGRADE version is less than C.9.3.2.7.0 AND BindUpgrade.BIND2-UPGRADE version is less than C.9.3.2.7.0 OR Criteria meets HP Security Bulletin HPSBUX02519 HP Release B.11.11 AND BindUpgrade.BIND-UPGRADE version is less than C.9.3.2.7.0 OR Criteria meets HP Security Bulletin HPSBUX02519 HP-UX B.11.31 AND filesets tests NameService.BIND-AUX version is less than C.9.3.2.8.0 AND NameService.BIND-RUN version is less than C.9.3.2.8.0

Definition Id: oval:org.mitre.oval:def:20476

Oval ID:	oval:org.mitre.oval:def:20476
Title:	Multiple vulnerabilities in AIX BIND
Description:	ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P5, 9.5 before 9.5.2-P2, 9.6 before 9.6.1-P3, and 9.7.0 beta does not properly validate DNSSEC (1) NSEC and (2) NSEC3 records, which allows remote attackers to add the Authenticated Data (AD) flag to a forged NXDOMAIN response for an existing domain.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-0097	Version:	6
Platform(s):	IBM AIX 6.1 IBM AIX 7.1	Product(s):
Definition Synopsis:
platforms IBM AIX 6.1 is installed AND IBM AIX 7.1 is installed AND filesets File Version Exists bos.net.tcp.client greater than or equal 5.3.12.0 AND bos.net.tcp.client less than or equal 5.3.12.5 OR File Version Exists bos.net.tcp.server greater than or equal 5.3.12.0 AND bos.net.tcp.server less than or equal 5.3.12.3 OR File Version Exists bos.net.tcp.client greater than or equal 6.1.5.0 AND bos.net.tcp.client less than or equal 6.1.5.7 OR File Version Exists bos.net.tcp.server greater than or equal 6.1.5.0 AND bos.net.tcp.server less than or equal 6.1.5.6 OR File Version Exists bos.net.tcp.client greater than or equal 6.1.6.0 AND bos.net.tcp.client less than or equal 6.1.6.16 OR File Version Exists bos.net.tcp.server greater than or equal 6.1.6.0 AND bos.net.tcp.server less than or equal 6.1.6.16 OR File Version Exists bos.net.tcp.client greater than or equal 6.1.7.0 AND bos.net.tcp.client less than or equal 6.1.7.1 OR File Version Exists bos.net.tcp.server greater than or equal 6.1.7.0 AND bos.net.tcp.server less than or equal 6.1.7.0 OR File Version Exists bos.net.tcp.client greater than or equal 7.1.0.0 AND bos.net.tcp.client less than or equal 7.1.0.17 OR File Version Exists bos.net.tcp.server greater than or equal 7.1.0.0 AND bos.net.tcp.server less than or equal 7.1.0.16 OR File Version Exists bos.net.tcp.client greater than or equal 7.1.1.0 AND bos.net.tcp.client less than or equal 7.1.1.1 OR File Version Exists bos.net.tcp.server greater than or equal 7.1.1.0 AND bos.net.tcp.server less than or equal 7.1.1.0

Definition Id: oval:org.mitre.oval:def:7212

Oval ID:	oval:org.mitre.oval:def:7212
Title:	ISC BIND 9 DNSSEC Bogus NXDOMAIN Response Remote Cache Poisoning Vulnerability
Description:	ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P5, 9.5 before 9.5.2-P2, 9.6 before 9.6.1-P3, and 9.7.0 beta does not properly validate DNSSEC (1) NSEC and (2) NSEC3 records, which allows remote attackers to add the Authenticated Data (AD) flag to a forged NXDOMAIN response for an existing domain.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-0097	Version:	5
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
VMware ESX Server 4.0 is installed AND Patch ESX400-201005408-SG is not installed

Definition Id: oval:org.mitre.oval:def:7430

Oval ID:	oval:org.mitre.oval:def:7430
Title:	A vulnerability in the way named(1M) handles recursive client queries may allow a remote unprivileged user to cause named(1M) to return NXDOMAIN (Non-Existent Domain) for Internet hosts thus causing a Denial of Service (DoS) for those hosts to end users
Description:	ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P5, 9.5 before 9.5.2-P2, 9.6 before 9.6.1-P3, and 9.7.0 beta does not properly validate DNSSEC (1) NSEC and (2) NSEC3 records, which allows remote attackers to add the Authenticated Data (AD) flag to a forged NXDOMAIN response for an existing domain.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-0097	Version:	3
Platform(s):	Sun Solaris 9 Sun Solaris 10	Product(s):
Definition Synopsis:
Software Section Solaris 9 (SPARC) meets Sun Alert 275890 Solaris 9 (SPARC) is installed AND NOT Patch 112837-21 or later installed OR Solaris 10 (SPARC) meets Sun Alert 275890 Solaris 10 (SPARC) is installed AND NOT Patch 119783-15 or later installed OR Solaris 9 (x86) meets Sun Alert 275890 Solaris 9 (x86) is installed AND NOT Patch 114265-20 or later installed OR Solaris 10 (x86) meets Sun Alert 275890 Solaris 10 (x86) is installed AND NOT Patch 119784-15 or later installed AND Configuration Section in.named running AND Server is configured as DNSSEC-validating nameserver (trusted-keys is set in /etc/named.conf)

Definition Id: oval:org.mitre.oval:def:9357

Oval ID:	oval:org.mitre.oval:def:9357
Title:	ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P5, 9.5 before 9.5.2-P2, 9.6 before 9.6.1-P3, and 9.7.0 beta does not properly validate DNSSEC (1) NSEC and (2) NSEC3 records, which allows remote attackers to add the Authenticated Data (AD) flag to a forged NXDOMAIN response for an existing domain.
Description:	ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P5, 9.5 before 9.5.2-P2, 9.6 before 9.6.1-P3, and 9.7.0 beta does not properly validate DNSSEC (1) NSEC and (2) NSEC3 records, which allows remote attackers to add the Authenticated Data (AD) flag to a forged NXDOMAIN response for an existing domain.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-0097	Version:	5
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section bind-utils is earlier than 30:9.3.6-4.P1.el5_4.2 AND bind-libbind-devel is earlier than 30:9.3.6-4.P1.el5_4.2 AND bind-devel is earlier than 30:9.3.6-4.P1.el5_4.2 AND bind-chroot is earlier than 30:9.3.6-4.P1.el5_4.2 AND caching-nameserver is earlier than 30:9.3.6-4.P1.el5_4.2 AND bind-sdb is earlier than 30:9.3.6-4.P1.el5_4.2 AND bind is earlier than 30:9.3.6-4.P1.el5_4.2 AND bind-libs is earlier than 30:9.3.6-4.P1.el5_4.2

CPE : Common Platform Enumeration

Type	Description	Count
Application	Isc Bind cpe:2.3:a:isc:bind:9.7.0::::-::: cpe:2.3:a:isc:bind:9.6.1:p2:::-:::* cpe:2.3:a:isc:bind:9.6.1:p1:::-:::* cpe:2.3:a:isc:bind:9.6.1::::-::: cpe:2.3:a:isc:bind:9.6.1:b1:::-:::* cpe:2.3:a:isc:bind:9.6.0:rc1:::-:::* cpe:2.3:a:isc:bind:9.6.0:rc2:::-:::* cpe:2.3:a:isc:bind:9.6.0:p1:::-:::* cpe:2.3:a:isc:bind:9.6.0::::-::: cpe:2.3:a:isc:bind:9.6.0:b1:::-:::* cpe:2.3:a:isc:bind:9.6.0:a1:::-:::* cpe:2.3:a:isc:bind:9.6:r6_b1:::esv:::* cpe:2.3:a:isc:bind:9.6:r9_p1:::esv:::* cpe:2.3:a:isc:bind:9.6:r5:::esv:::* cpe:2.3:a:isc:bind:9.6:r9:::esv:::* cpe:2.3:a:isc:bind:9.6:r2:::esv:::* cpe:2.3:a:isc:bind:9.6:r3:::esv:::* cpe:2.3:a:isc:bind:9.6:r7_p1:::esv:::* cpe:2.3:a:isc:bind:9.6:r4:::esv:::* cpe:2.3:a:isc:bind:9.6:r6_rc1:::esv:::* cpe:2.3:a:isc:bind:9.6:r6_rc2:::esv:::* cpe:2.3:a:isc:bind:9.6:r6:::esv:::* cpe:2.3:a:isc:bind:9.6:r7:::esv:::* cpe:2.3:a:isc:bind:9.6:r7_p2:::esv:::* cpe:2.3:a:isc:bind:9.6:r5_b1:::esv:::* cpe:2.3:a:isc:bind:9.6:r4_p1:::esv:::* cpe:2.3:a:isc:bind:9.6:r1:::esv:::* cpe:2.3:a:isc:bind:9.6::::esv::: cpe:2.3:a:isc:bind:9.6:r5_p1:::esv:::* cpe:2.3:a:isc:bind:9.5.2::::-::: cpe:2.3:a:isc:bind:9.5.2:b1:::-:::* cpe:2.3:a:isc:bind:9.5.2:p1:::-:::* cpe:2.3:a:isc:bind:9.5.1:rc2:::-:::* cpe:2.3:a:isc:bind:9.5.1:rc1:::-:::* cpe:2.3:a:isc:bind:9.5.1::::-::: cpe:2.3:a:isc:bind:9.5.1:b1:::-:::* cpe:2.3:a:isc:bind:9.5.1:b3:::-:::* cpe:2.3:a:isc:bind:9.5.1:b2:::-:::* cpe:2.3:a:isc:bind:9.5.0:rc1:::-:::* cpe:2.3:a:isc:bind:9.5.0::::-::: cpe:2.3:a:isc:bind:9.5.0:b1:::-:::* cpe:2.3:a:isc:bind:9.5.0:b3:::-:::* cpe:2.3:a:isc:bind:9.5.0:b2:::-:::* cpe:2.3:a:isc:bind:9.5.0:p2_w2:::-:::* cpe:2.3:a:isc:bind:9.5.0:p2_w1:::-:::* cpe:2.3:a:isc:bind:9.5.0:a3:::-:::* cpe:2.3:a:isc:bind:9.5.0:a2:::-:::* cpe:2.3:a:isc:bind:9.5.0:a1:::-:::* cpe:2.3:a:isc:bind:9.5.0:a7:::-:::* cpe:2.3:a:isc:bind:9.5.0:a6:::-:::* cpe:2.3:a:isc:bind:9.5.0:a5:::-:::* cpe:2.3:a:isc:bind:9.5.0:p2:::-:::* cpe:2.3:a:isc:bind:9.5.0:p1:::-:::* cpe:2.3:a:isc:bind:9.5.0:a4:::-:::* cpe:2.3:a:isc:bind:9.5::::-::: cpe:2.3:a:isc:bind:9.4.3:rc1:::-:::* cpe:2.3:a:isc:bind:9.4.3::::-::: cpe:2.3:a:isc:bind:9.4.3:p2:::-:::* cpe:2.3:a:isc:bind:9.4.3:b1:::-:::* cpe:2.3:a:isc:bind:9.4.3:b3:::-:::* cpe:2.3:a:isc:bind:9.4.3:b2:::-:::* cpe:2.3:a:isc:bind:9.4.2::::-::: cpe:2.3:a:isc:bind:9.4.2:rc1:::-:::* cpe:2.3:a:isc:bind:9.4.2:rc2:::-:::* cpe:2.3:a:isc:bind:9.4.1::::-::: cpe:2.3:a:isc:bind:9.4.0::::-::: cpe:2.3:a:isc:bind:9.4.0:rc1:::-:::* cpe:2.3:a:isc:bind:9.4.0:rc2:::-:::* cpe:2.3:a:isc:bind:9.4.0:a6:::-:::* cpe:2.3:a:isc:bind:9.4.0:a5:::-:::* cpe:2.3:a:isc:bind:9.4.0:b4:::-:::* cpe:2.3:a:isc:bind:9.4.0:b3:::-:::* cpe:2.3:a:isc:bind:9.4.0:b2:::-:::* cpe:2.3:a:isc:bind:9.4.0:b1:::-:::* cpe:2.3:a:isc:bind:9.4.0:a4:::-:::* cpe:2.3:a:isc:bind:9.4.0:a3:::-:::* cpe:2.3:a:isc:bind:9.4.0:a2:::-:::* cpe:2.3:a:isc:bind:9.4.0:a1:::-:::* cpe:2.3:a:isc:bind:9.4::::-::: cpe:2.3:a:isc:bind:9.4:r5-b1:::esv:::* cpe:2.3:a:isc:bind:9.4:r1:::esv:::* cpe:2.3:a:isc:bind:9.4:b1:::esv:::* cpe:2.3:a:isc:bind:9.4:r3:::esv:::* cpe:2.3:a:isc:bind:9.4:r4:::esv:::* cpe:2.3:a:isc:bind:9.4:r5:::esv:::* cpe:2.3:a:isc:bind:9.4:r2:::esv:::* cpe:2.3:a:isc:bind:9.4:r4-p1:::esv:::* cpe:2.3:a:isc:bind:9.4::::esv::: cpe:2.3:a:isc:bind:9.4:r5-p1:::esv:::* cpe:2.3:a:isc:bind:9.4:r5-rc1:::esv:::* cpe:2.3:a:isc:bind:9.3.6::::-::: cpe:2.3:a:isc:bind:9.3.6:rc1:::-:::* cpe:2.3:a:isc:bind:9.3.5::::-::: cpe:2.3:a:isc:bind:9.3.5:rc1:::-:::* cpe:2.3:a:isc:bind:9.3.5:rc2:::-:::* cpe:2.3:a:isc:bind:9.3.4::::-::: cpe:2.3:a:isc:bind:9.3.3::::-::: cpe:2.3:a:isc:bind:9.3.3:rc3:::-:::* cpe:2.3:a:isc:bind:9.3.3:rc1:::-:::* cpe:2.3:a:isc:bind:9.3.3:rc2:::-:::* cpe:2.3:a:isc:bind:9.3.2::::-::: cpe:2.3:a:isc:bind:9.3.2:rc1:::-:::* cpe:2.3:a:isc:bind:9.3.1::::-::: cpe:2.3:a:isc:bind:9.3.1:rc1:::-:::* cpe:2.3:a:isc:bind:9.3.1:b2:::-:::* cpe:2.3:a:isc:bind:9.3.0::::-::: cpe:2.3:a:isc:bind:9.3.0:rc1:::-:::* cpe:2.3:a:isc:bind:9.3.0:rc4:::-:::* cpe:2.3:a:isc:bind:9.3.0:rc3:::-:::* cpe:2.3:a:isc:bind:9.3.0:rc2:::-:::* cpe:2.3:a:isc:bind:9.3.0:b4:::-:::* cpe:2.3:a:isc:bind:9.3.0:b3:::-:::* cpe:2.3:a:isc:bind:9.3.0:b2:::-:::* cpe:2.3:a:isc:bind:9.3::::-::: cpe:2.3:a:isc:bind:9.2.9::::-::: cpe:2.3:a:isc:bind:9.2.9:rc1:::-:::* cpe:2.3:a:isc:bind:9.2.8::::-::: cpe:2.3:a:isc:bind:9.2.7::::-::: cpe:2.3:a:isc:bind:9.2.7:rc3:::-:::* cpe:2.3:a:isc:bind:9.2.7:rc1:::-:::* cpe:2.3:a:isc:bind:9.2.7:rc2:::-:::* cpe:2.3:a:isc:bind:9.2.6::::-::: cpe:2.3:a:isc:bind:9.2.6:rc1:::-:::* cpe:2.3:a:isc:bind:9.2.5::::-::: cpe:2.3:a:isc:bind:9.2.5:rc1:::-:::* cpe:2.3:a:isc:bind:9.2.5:b2:::-:::* cpe:2.3:a:isc:bind:9.2.4::::-::: cpe:2.3:a:isc:bind:9.2.4:rc7:::-:::* cpe:2.3:a:isc:bind:9.2.4:rc8:::-:::* cpe:2.3:a:isc:bind:9.2.4:rc2:::-:::* cpe:2.3:a:isc:bind:9.2.4:rc3:::-:::* cpe:2.3:a:isc:bind:9.2.4:rc6:::-:::* cpe:2.3:a:isc:bind:9.2.4:rc5:::-:::* cpe:2.3:a:isc:bind:9.2.4:rc4:::-:::* cpe:2.3:a:isc:bind:9.2.3::::-::: cpe:2.3:a:isc:bind:9.2.3:rc3:::-:::* cpe:2.3:a:isc:bind:9.2.3:rc1:::-:::* cpe:2.3:a:isc:bind:9.2.3:rc4:::-:::* cpe:2.3:a:isc:bind:9.2.3:rc2:::-:::* cpe:2.3:a:isc:bind:9.2.2::::-::: cpe:2.3:a:isc:bind:9.2.2:p3:::-:::* cpe:2.3:a:isc:bind:9.2.2:rc1:::-:::* cpe:2.3:a:isc:bind:9.2.2:p2:::-:::* cpe:2.3:a:isc:bind:9.2.1::::-::: cpe:2.3:a:isc:bind:9.2.1:rc1:::-:::* cpe:2.3:a:isc:bind:9.2.1:rc2:::-:::* cpe:2.3:a:isc:bind:9.2.0::::-::: cpe:2.3:a:isc:bind:9.2.0:rc4:::-:::* cpe:2.3:a:isc:bind:9.2.0:rc9:::-:::* cpe:2.3:a:isc:bind:9.2.0:rc5:::-:::* cpe:2.3:a:isc:bind:9.2.0:rc10:::-:::* cpe:2.3:a:isc:bind:9.2.0:rc3:::-:::* cpe:2.3:a:isc:bind:9.2.0:rc2:::-:::* cpe:2.3:a:isc:bind:9.2.0:rc1:::-:::* cpe:2.3:a:isc:bind:9.2.0:rc7:::-:::* cpe:2.3:a:isc:bind:9.2.0:rc6:::-:::* cpe:2.3:a:isc:bind:9.2.0:rc8:::-:::* cpe:2.3:a:isc:bind:9.2.0:b1:::-:::* cpe:2.3:a:isc:bind:9.2.0:a1:::-:::* cpe:2.3:a:isc:bind:9.2.0:b2:::-:::* cpe:2.3:a:isc:bind:9.2.0:a2:::-:::* cpe:2.3:a:isc:bind:9.2.0:a3:::-:::* cpe:2.3:a:isc:bind:9.2::::-::: cpe:2.3:a:isc:bind:9.1.3::::-::: cpe:2.3:a:isc:bind:9.1.3:rc1:::-:::* cpe:2.3:a:isc:bind:9.1.3:rc2:::-:::* cpe:2.3:a:isc:bind:9.1.3:rc3:::-:::* cpe:2.3:a:isc:bind:9.1.2::::-::: cpe:2.3:a:isc:bind:9.1.2:rc1:::-:::* cpe:2.3:a:isc:bind:9.1.1::::-::: cpe:2.3:a:isc:bind:9.1.1:rc6:::-:::* cpe:2.3:a:isc:bind:9.1.1:rc7:::-:::* cpe:2.3:a:isc:bind:9.1.1:rc3:::-:::* cpe:2.3:a:isc:bind:9.1.1:rc2:::-:::* cpe:2.3:a:isc:bind:9.1.1:rc4:::-:::* cpe:2.3:a:isc:bind:9.1.1:rc5:::-:::* cpe:2.3:a:isc:bind:9.1.1:rc1:::-:::* cpe:2.3:a:isc:bind:9.1.0:rc1:::-:::* cpe:2.3:a:isc:bind:9.1::::-::: cpe:2.3:a:isc:bind:9.0.1::::-::: cpe:2.3:a:isc:bind:9.0.1:rc2:::-:::* cpe:2.3:a:isc:bind:9.0.1:rc1:::-:::* cpe:2.3:a:isc:bind:9.0.0:rc4:::-:::* cpe:2.3:a:isc:bind:9.0.0:rc5:::-:::* cpe:2.3:a:isc:bind:9.0.0:rc2:::-:::* cpe:2.3:a:isc:bind:9.0.0:rc6:::-:::* cpe:2.3:a:isc:bind:9.0.0:rc1:::-:::* cpe:2.3:a:isc:bind:9.0.0:rc3:::-:::* cpe:2.3:a:isc:bind:9.0::::-:::	189

OpenVAS Exploits

Date	Description
2012-04-16	Name : VMSA-2010-0009: ESXi utilities and ESX Service Console third party updates File : nvt/gb_VMSA-2010-0009.nasl
2011-10-20	Name : Mac OS X v10.6.8 Multiple Vulnerabilities (2011-006) File : nvt/gb_macosx_su11-006.nasl
2011-08-09	Name : CentOS Update for bind CESA-2010:0062 centos5 i386 File : nvt/gb_CESA-2010_0062_bind_centos5_i386.nasl
2011-03-09	Name : Gentoo Security Advisory GLSA 201006-11 (BIND) File : nvt/glsa_201006_11.nasl
2010-07-06	Name : Debian Security Advisory DSA 2054-2 (bind9) File : nvt/deb_2054_2.nasl
2010-06-10	Name : Debian Security Advisory DSA 2054-1 (bind9) File : nvt/deb_2054_1.nasl
2010-04-30	Name : HP-UX Update for BIND HPSBUX02519 File : nvt/gb_hp_ux_HPSBUX02519.nasl
2010-03-02	Name : Fedora Update for bind FEDORA-2010-0861 File : nvt/gb_fedora_2010_0861_bind_fc11.nasl
2010-03-02	Name : Fedora Update for bind FEDORA-2010-0868 File : nvt/gb_fedora_2010_0868_bind_fc12.nasl
2010-01-29	Name : SuSE Update for acroread SUSE-SA:2010:008 File : nvt/gb_suse_2010_008.nasl
2010-01-25	Name : RedHat Update for bind RHSA-2010:0062-02 File : nvt/gb_RHSA-2010_0062-02_bind.nasl
2010-01-22	Name : Mandriva Update for bind MDVSA-2010:021 (bind) File : nvt/gb_mandriva_MDVSA_2010_021.nasl
2010-01-22	Name : Ubuntu Update for bind9 vulnerabilities USN-888-1 File : nvt/gb_ubuntu_USN_888_1.nasl
2010-01-20	Name : ISC BIND 9 DNSSEC Bogus NXDOMAIN Response Remote Cache Poisoning Vulnerability File : nvt/bind_37865.nasl
0000-00-00	Name : Slackware Advisory SSA:2010-176-01 bind File : nvt/esoft_slk_ssa_2010_176_01.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
61853	ISC BIND DNSSEC Validation Crafted NXDOMAIN Request Cache Poisoning

Nessus® Vulnerability Scanner

Date	Description
2017-04-21	Name : The remote OracleVM host is missing one or more security updates. File : oraclevm_OVMSA-2017-0066.nasl - Type : ACT_GATHER_INFO
2016-03-08	Name : The remote VMware ESX / ESXi host is missing a security-related patch. File : vmware_VMSA-2010-0009_remote.nasl - Type : ACT_GATHER_INFO
2015-07-31	Name : The remote device is missing a vendor-supplied security patch. File : f5_bigip_SOL17025.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2010-0062.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote AIX host is missing a security patch. File : aix_IV09491.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote AIX host is missing a security patch. File : aix_IV11744.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote AIX host is missing a security patch. File : aix_IV11743.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote AIX host is missing a security patch. File : aix_IV10049.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote AIX host is missing a security patch. File : aix_IV11742.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote AIX host is missing a security patch. File : aix_IV09978.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20100120_bind_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2011-10-13	Name : The remote host is missing a Mac OS X update that fixes several security issues. File : macosx_SecUpd2011-006.nasl - Type : ACT_GATHER_INFO
2011-05-28	Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2010-176-01.nasl - Type : ACT_GATHER_INFO
2010-07-01	Name : The remote Fedora host is missing a security update. File : fedora_2010-0861.nasl - Type : ACT_GATHER_INFO
2010-07-01	Name : The remote Fedora host is missing a security update. File : fedora_2010-0868.nasl - Type : ACT_GATHER_INFO
2010-06-08	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2054.nasl - Type : ACT_GATHER_INFO
2010-06-02	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201006-11.nasl - Type : ACT_GATHER_INFO
2010-06-01	Name : The remote VMware ESXi / ESX host is missing one or more security-related pat... File : vmware_VMSA-2010-0009.nasl - Type : ACT_GATHER_INFO
2010-01-26	Name : The remote openSUSE host is missing a security update. File : suse_11_0_bind-100121.nasl - Type : ACT_GATHER_INFO
2010-01-26	Name : The remote openSUSE host is missing a security update. File : suse_11_1_bind-100121.nasl - Type : ACT_GATHER_INFO
2010-01-26	Name : The remote openSUSE host is missing a security update. File : suse_11_2_bind-100121.nasl - Type : ACT_GATHER_INFO
2010-01-26	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_bind-100121.nasl - Type : ACT_GATHER_INFO
2010-01-22	Name : The remote name server is affected by a cache poisoning vulnerability. File : bind9_bogus_nxdomain_caching.nasl - Type : ACT_GATHER_INFO
2010-01-21	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-888-1.nasl - Type : ACT_GATHER_INFO
2010-01-21	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0062.nasl - Type : ACT_GATHER_INFO
2010-01-21	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-021.nasl - Type : ACT_GATHER_INFO
2010-01-21	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2010-0062.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 12:07:46	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	5
CPE ID(s)	189
osvdb(s)	1
Openvas Exploit(s)	15
Nessus® Exploit(s)	27

	Related
4.3	SUN-275890
4.3	CVE-2010-0097
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 2 more Alert(s)