Anfälligkeitssuche        Suche in 172616 CVE Beschreibungen
und 81291 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.810286
Kategorie:Denial of Service
Titel:ISC BIND Inconsistent DNSSEC Information Denial of Service Vulnerability (Linux)
Zusammenfassung:The host is installed with ISC BIND and is; prone to denial of service vulnerability.
Beschreibung:Summary:
The host is installed with ISC BIND and is
prone to denial of service vulnerability.

Vulnerability Insight:
The flaw exists due to an error in
handling a query response containing inconsistent DNSSEC information.

Vulnerability Impact:
Successful exploitation will allow remote
attackers to cause a denial of service (assertion failure and daemon exit) via
crafted data.

Affected Software/OS:
ISC BIND 9.9.9-P4, 9.9.9-S6, 9.10.4-P4 and
9.11.0-P1.

Solution:
Upgrade to ISC BIND version 9.9.9-P5 or
9.9.9-S7 or 9.10.4-P5 or 9.11.0-P2 or later.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Querverweis: BugTraq ID: 95390
Common Vulnerability Exposure (CVE) ID: CVE-2016-9147
http://www.securityfocus.com/bid/95390
Debian Security Information: DSA-3758 (Google Search)
http://www.debian.org/security/2017/dsa-3758
https://security.gentoo.org/glsa/201708-01
RedHat Security Advisories: RHSA-2017:0062
http://rhn.redhat.com/errata/RHSA-2017-0062.html
RedHat Security Advisories: RHSA-2017:0063
http://rhn.redhat.com/errata/RHSA-2017-0063.html
RedHat Security Advisories: RHSA-2017:0064
http://rhn.redhat.com/errata/RHSA-2017-0064.html
RedHat Security Advisories: RHSA-2017:1582
https://access.redhat.com/errata/RHSA-2017:1582
RedHat Security Advisories: RHSA-2017:1583
https://access.redhat.com/errata/RHSA-2017:1583
http://www.securitytracker.com/id/1037582
CopyrightCopyright (C) 2017 Greenbone Networks GmbH

Dies ist nur einer von 81291 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.