Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

isc bind 9.10.3 vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv2
CVE-2016-2088
resolver.c in named in ISC BIND 9.10.x prior to 9.10.3-P4, when DNS cookies are enabled, allows remote malicious users to cause a denial of service (INSIST assertion failure and daemon exit) via a malformed packet with more than one cookie option.
Isc Bind 9.10.3Isc Bind 9.10.2Isc Bind 9.10.1Isc Bind 9.10.0
6.6
CVSSv2
CVE-2015-8705
buffer.c in named in ISC BIND 9.10.x prior to 9.10.3-P3, when debug logging is enabled, allows remote malicious users to cause a denial of service (REQUIRE assertion failure and daemon exit, or daemon crash) or possibly have unspecified other impact via (1) OPT data or (2) an ECS...
Isc Bind 9.10.2Isc Bind 9.6Isc Bind 9.5.3Isc Bind 9.5.2Isc Bind 9.5.1Isc Bind 9.4.3Isc Bind 9.4Isc Bind 9.3.3Isc Bind 9.2.5Isc Bind 9.2.4Isc Bind 9.1.2Isc Bind 9.1.1Isc Bind 9.10.3Isc Bind 9.5.0Isc Bind 9.5Isc Bind 9.4.1Isc Bind 9.4.0Isc Bind 9.3.0Isc Bind 9.3Isc Bind 9.2.1Isc Bind 9.2.0Isc Bind 9.0
4
CVSSv2
CVE-2010-0290
Unspecified vulnerability in ISC BIND 9.0.x up to and including 9.3.x, 9.4 prior to 9.4.3-P5, 9.5 prior to 9.5.2-P2, 9.6 prior to 9.6.1-P3, and 9.7.0 beta, with DNSSEC validation enabled and checking disabled (CD), allows remote malicious users to conduct DNS cache poisoning atta...
Isc Bind 9.10.0Isc Bind 9.10.2Isc Bind 9.6.1Isc Bind 9.2.0Isc Bind 9.1.1Isc Bind 9.3.1Isc Bind 9.4.3Isc Bind 9.2.3Isc Bind 9.1.3Isc Bind 9.10.1Isc Bind 9.4.0Isc Bind 9.3.5Isc Bind 9.7.0Isc Bind 9.3.2Isc Bind 9.10.3Isc Bind 9.2.8Isc Bind 9.2Isc Bind 9.3.0Isc Bind 9.2.4Isc Bind 9.2.1Isc Bind 9.0.0Isc Bind 9.3
7.6
CVSSv2
CVE-2010-0382
ISC BIND 9.0.x up to and including 9.3.x, 9.4 prior to 9.4.3-P5, 9.5 prior to 9.5.2-P2, 9.6 prior to 9.6.1-P3, and 9.7.0 beta handles out-of-bailiwick data accompanying a secure response without re-fetching from the original source, which allows remote malicious users to have an ...
Isc Bind 9.7.0Isc Bind 9.6.1Isc Bind 9.6.0Isc Bind 9.4.3Isc Bind 9.4.1Isc Bind 9.4.0Isc Bind 9.3.5Isc Bind 9.3.2Isc Bind 9.3.1Isc Bind 9.3.0Isc Bind 9.2.7Isc Bind 9.2.4Isc Bind 9.2.3Isc Bind 9.2.2Isc Bind 9.2.1Isc Bind 9.2.0Isc Bind 9.10.3Isc Bind 9.10.1Isc Bind 9.10.0Isc Bind 9.1.3Isc Bind 9.1.1Isc Bind 9.0.1
7.1
CVSSv2
CVE-2015-8461
Race condition in resolver.c in named in ISC BIND 9.9.8 prior to 9.9.8-P2 and 9.10.3 prior to 9.10.3-P2 allows remote malicious users to cause a denial of service (INSIST assertion failure and daemon exit) via unspecified vectors.
Isc Bind 9.2Isc Bind 9.2.0Isc Bind 9.2.7Isc Bind 9.3Isc Bind 9.1.2Isc Bind 9.1.3Isc Bind 9.2.4Isc Bind 9.2.5Isc Bind 9.0Isc Bind 9.0.1Isc Bind 9.2.1Isc Bind 9.2.2Isc Bind 9.3.0Isc Bind 9.3.1Isc Bind 9.4.0Isc Bind 9.4.1Isc Bind 9.4.2Isc Bind 9.4.3Isc Bind 9.5.1Isc Bind 9.7.0Isc Bind 9.7.1Isc Bind 9.6.3
5
CVSSv2
CVE-2015-8000
db.c in named in ISC BIND 9.x prior to 9.9.8-P2 and 9.10.x prior to 9.10.3-P2 allows remote malicious users to cause a denial of service (REQUIRE assertion failure and daemon exit) via a malformed class attribute.
Oracle Linux 6Oracle Vm Server 3.2Oracle Solaris 11.3Oracle Linux 7Oracle Linux 5.0Oracle Solaris 10Isc Bind 9.2Isc Bind 9.2.0Isc Bind 9.2.6Isc Bind 9.2.7Isc Bind 9.6.0Isc Bind 9.5.1Isc Bind 9.4.3Isc Bind 9.5.2Isc Bind 9.6.1Isc Bind 9.6Isc Bind 9.7.0Isc Bind 9.7.1Isc Bind 9.7.2Isc Bind 9.7.4Isc Bind 9.8.0Isc Bind 9.9.0
3.5
CVSSv2
CVE-2018-5745
"managed-keys" is a feature which allows a BIND resolver to automatically maintain the keys used by trust anchors which operators configure for use in DNSSEC validation. Due to an error in the managed-keys feature it is possible for a BIND server which uses managed-keys...
Isc BindIsc Bind 9.10.7Isc Bind 9.11.5Isc Bind 9.9.3Isc Bind 9.12.3Isc Bind 9.10.8
5
CVSSv2
CVE-2020-8616
A malicious actor who intentionally exploits this lack of effective limitation on the number of fetches performed when processing referrals can, through the use of specially crafted referrals, cause a recursing server to issue a very large number of fetches in an attempt to proce...
Isc BindIsc Bind 9.12.4Isc Bind 9.11.7Isc Bind 9.11.3Isc Bind 9.11.6Isc Bind 9.10.5Isc Bind 9.11.5Isc Bind 9.9.3Isc Bind 9.10.7Isc Bind 9.11.8Debian Debian Linux 9.0Debian Debian Linux 10.0
4.3
CVSSv2
CVE-2019-6465
Controls for zone transfers may not be properly applied to Dynamically Loadable Zones (DLZs) if the zones are writable Versions affected: BIND 9.9.0 -> 9.10.8-P1, 9.11.0 -> 9.11.5-P2, 9.12.0 -> 9.12.3-P2, and versions 9.9.3-S1 -> 9.11.5-S3 of BIND 9 Supported Preview ...
Isc BindIsc Bind 9.9.3Isc Bind 9.10.8Isc Bind 9.11.5Isc Bind 9.12.3Redhat Enterprise Linux 8.0
5
CVSSv2
CVE-2019-6477
With pipelining enabled each incoming query on a TCP connection requires a similar resource allocation to a query received via UDP or via TCP without pipelining enabled. A client using a TCP-pipelined connection to a server could consume more resources than the server has been pr...
Isc Bind 9.12.4Isc BindIsc Bind 9.11.6Isc Bind 9.11.5Isc Bind 9.11.12Fedoraproject Fedora 30Fedoraproject Fedora 31
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111CVE-2024-32884IDORCVE-2023-1000CVE-2024-33260CVE-2024-3682reflected XSSrace conditionCVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook