Published: 29/11/2002 Updated: 03/05/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Buffer overflow in named in BIND 4 versions 4.9.10 and previous versions, and 8 versions 8.3.3 and previous versions, allows remote malicious users to execute arbitrary code via a certain DNS server response containing SIG resource records (RR).

Vulnerable Product	Search on Vulmon	Subscribe to Product
isc bind 4.9.6
isc bind 4.9.7
isc bind 8.2.4
isc bind 8.2.5
isc bind 4.9.8
isc bind 4.9.9
isc bind 8.2.6
isc bind 8.3.0
isc bind 8.2
isc bind 8.2.1
isc bind 8.3.1
isc bind 8.3.2
isc bind 8.3.3
isc bind 4.9.10
isc bind 4.9.5
isc bind 8.2.2
isc bind 8.2.3
freebsd freebsd 4.5
freebsd freebsd 4.7
openbsd openbsd 3.0
freebsd freebsd 4.6
openbsd openbsd 3.1
openbsd openbsd 3.2
freebsd freebsd 4.4

[Bind version 9, the bind9 package, is not affected by these problems] ISS X-Force has discovered several serious vulnerabilities in the Berkeley Internet Name Domain Server (BIND) BIND is the most common implementation of the DNS (Domain Name Service) protocol, which is used on the vast majority of DNS servers on the Internet DNS is a vital Int ...

NVD-CWE-Other http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21469 http://www.isc.org/products/BIND/bind-security.html http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F48818 http://www.cert.org/advisories/CA-2002-31.html http://www.kb.cert.org/vuls/id/852283 http://lists.apple.com/archives/Security-announce/2002/Nov/msg00000.html http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-077.php http://www.debian.org/security/2002/dsa-196 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000546 http://www.ciac.org/ciac/bulletins/n-013.shtml http://online.securityfocus.com/archive/1/300019 http://online.securityfocus.com/advisories/4999 ftp://patches.sgi.com/support/free/security/advisories/20021201-01-P http://www.securityfocus.com/bid/6160 http://marc.info/?l=bugtraq&m=103763574715133&w=2 http://marc.info/?l=bugtraq&m=103713117612842&w=2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2539 https://exchange.xforce.ibmcloud.com/vulnerabilities/10304 https://nvd.nist.gov https://www.debian.org/security/./dsa-196 https://www.kb.cert.org/vuls/id/852283

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-1219

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect