Published: 29/11/2002 Updated: 03/05/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

BIND 8.x up to and including 8.3.3 allows remote malicious users to cause a denial of service (crash) via SIG RR elements with invalid expiry times, which are removed from the internal BIND database and later cause a null dereference.

Vulnerable Product	Search on Vulmon	Subscribe to Product
isc bind 8.1
isc bind 8.2.4
isc bind 8.2.5
isc bind 8.2.2
isc bind 8.2.3
isc bind 8.3.3
isc bind 8.1.1
isc bind 8.1.2
isc bind 8.2.6
isc bind 8.3.0
isc bind 8.2
isc bind 8.2.1
isc bind 8.3.1
isc bind 8.3.2
freebsd freebsd 4.4
freebsd freebsd 4.5
openbsd openbsd 3.2
freebsd freebsd 4.6
freebsd freebsd 4.7
openbsd openbsd 3.0
openbsd openbsd 3.1

[Bind version 9, the bind9 package, is not affected by these problems] ISS X-Force has discovered several serious vulnerabilities in the Berkeley Internet Name Domain Server (BIND) BIND is the most common implementation of the DNS (Domain Name Service) protocol, which is used on the vast majority of DNS servers on the Internet DNS is a vital Int ...

NVD-CWE-Other http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21469 http://www.isc.org/products/BIND/bind-security.html http://www.cert.org/advisories/CA-2002-31.html http://www.kb.cert.org/vuls/id/581682 http://lists.apple.com/archives/Security-announce/2002/Nov/msg00000.html http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-077.php http://www.debian.org/security/2002/dsa-196 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000546 http://www.ciac.org/ciac/bulletins/n-013.shtml http://online.securityfocus.com/archive/1/300019 http://online.securityfocus.com/advisories/4999 http://www.securityfocus.com/bid/6159 http://marc.info/?l=bugtraq&m=103763574715133&w=2 http://marc.info/?l=bugtraq&m=103713117612842&w=2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2094 https://exchange.xforce.ibmcloud.com/vulnerabilities/10333 https://nvd.nist.gov https://www.debian.org/security/./dsa-196 https://www.kb.cert.org/vuls/id/581682

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-1221

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect