Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
isc vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2018-5736
An error in zone database reference counting can lead to an assertion failure if a server which is running an affected version of BIND attempts several transfers of a slave zone in quick succession. This defect could be deliberately exercised by an attacker who is permitted to ca...
Isc Bind 9.12.0
Isc Bind 9.12.1
Netapp Data Ontap Edge -
Netapp Cloud Backup -
446
VMScore
CVE-2018-5738
Change #4777 (introduced in October 2017) introduced an unforeseen issue in releases which were issued after that date, affecting which clients are permitted to make recursive queries to a BIND nameserver. The intended (and documented) behavior is that if an operator has not spec...
Isc Bind 9.10.7
Isc Bind 9.12.0
Isc Bind 9.12.1
Isc Bind 9.11.3
Isc Bind 9.13.0
Isc Bind 9.9.12
Canonical Ubuntu Linux 18.04
445
VMScore
CVE-2018-5737
A problem with the implementation of the new serve-stale feature in BIND 9.12 can lead to an assertion failure in rbtdb.c, even when stale-answer-enable is off. Additionally, problematic interaction between the serve-stale feature and NSEC aggressive negative caching can in some ...
Isc Bind 9.12.0
Isc Bind 9.12.1
Netapp Cloud Backup -
Netapp Data Ontap Edge -
445
VMScore
CVE-2018-5739
An extension to hooks capabilities which debuted in Kea 1.4.0 introduced a memory leak for operators who are using certain hooks library facilities. In order to support multiple requests simultaneously, Kea 1.4 added a callout handle store but unfortunately the initial implementa...
Isc Kea 1.4.0
358
VMScore
CVE-2018-5741
To provide fine-grained controls over the ability to use Dynamic DNS (DDNS) to update records in a zone, BIND 9 provides a feature called update-policy. Various rules can be configured to limit the types of updates that can be performed by a client, depending on the key used when...
Isc Bind
385
VMScore
CVE-2016-9778
An error in handling certain queries can cause an assertion failure when a server is using the nxdomain-redirect feature to cover a zone for which it is also providing authoritative service. A vulnerable server could be intentionally stopped by an attacker if it was using a confi...
Isc Bind 9.9.8
Isc Bind 9.9.9
Isc Bind 9.11.0
Netapp Solidfire Element Os Management Node -
Netapp Data Ontap Edge -
445
VMScore
CVE-2017-17974
BA SYSTEMS BAS Web on BAS920 devices (with Firmware 01.01.00*, HTTPserv 00002, and Script 02.*) and ISC2000 devices allows remote malicious users to obtain sensitive information via a request for isc/get_sid_js.aspx or isc/get_sid.aspx, as demonstrated by obtaining administrative...
Basystems Bas920 Firmware 01.01.00
Basystems Isc2000 Firmware 01.01.00
385
VMScore
CVE-2016-2088
resolver.c in named in ISC BIND 9.10.x prior to 9.10.3-P4, when DNS cookies are enabled, allows remote malicious users to cause a denial of service (INSIST assertion failure and daemon exit) via a malformed packet with more than one cookie option.
Isc Bind 9.10.3
Isc Bind 9.10.2
Isc Bind 9.10.1
Isc Bind 9.10.0
632
VMScore
CVE-2016-2774
ISC DHCP 4.1.x prior to 4.1-ESV-R13 and 4.2.x and 4.3.x prior to 4.3.4 does not restrict the number of concurrent TCP sessions, which allows remote malicious users to cause a denial of service (INSIST assertion failure or request-processing outage) by establishing many sessions.
Isc Dhcp 4.1-esv
Isc Dhcp 4.1.0
Isc Dhcp 4.1.1
Isc Dhcp 4.1.2
Isc Dhcp 4.2.0
Isc Dhcp 4.2.1
Isc Dhcp 4.2.2
Isc Dhcp 4.2.3
Isc Dhcp 4.2.4
Isc Dhcp 4.2.5
Isc Dhcp 4.2.6
Isc Dhcp 4.2.7
Isc Dhcp 4.2.8
Isc Dhcp 4.3.0
Isc Dhcp 4.3.1
Isc Dhcp 4.3.2
Isc Dhcp 4.3.3
Debian Debian Linux 8.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 17.10
231
VMScore
CVE-2016-1284
rdataset.c in ISC BIND 9 Supported Preview Edition 9.9.8-S prior to 9.9.8-S5, when nxdomain-redirect is enabled, allows remote malicious users to cause a denial of service (REQUIRE assertion failure and daemon exit) via crafted flag values in a query.
Isc Bind 9.9.8
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »