Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | |||
CVE Kennung: | CVE-2009-3602 |
Beschreibung: | Unbound before 1.3.4 does not properly verify signatures for NSEC3 records, which allows remote attackers to cause secure delegations to be downgraded via DNS spoofing or other DNS-related attacks in conjunction with crafted delegation responses. |
Test Kennungen: | 1.3.6.1.4.1.25623.1.0.100416 1.3.6.1.4.1.25623.1.0.66597 |
Querverweise: |
Common Vulnerability Exposure (CVE) ID: CVE-2009-3602 Debian Security Information: DSA-1963 (Google Search) http://www.debian.org/security/2009/dsa-1963 http://unbound.net/pipermail/unbound-users/2009-October/000852.html http://www.openwall.com/lists/oss-security/2009/10/09/2 http://www.openwall.com/lists/oss-security/2009/10/09/3 http://osvdb.org/58836 http://secunia.com/advisories/36996 http://secunia.com/advisories/37913 http://www.vupen.com/english/advisories/2009/2875 XForce ISS Database: unbound-nsec3-security-bypass(53729) https://exchange.xforce.ibmcloud.com/vulnerabilities/53729 |