BIND 8.x up to and including 8.3.3 allows remote malicious users to cause a denial of service (crash) via SIG RR elements with invalid expiry times, which are removed from the internal BIND database and later cause a null dereference.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
isc bind 8.1 |
||
isc bind 8.2.4 |
||
isc bind 8.2.5 |
||
isc bind 8.2.2 |
||
isc bind 8.2.3 |
||
isc bind 8.3.3 |
||
isc bind 8.1.1 |
||
isc bind 8.1.2 |
||
isc bind 8.2.6 |
||
isc bind 8.3.0 |
||
isc bind 8.2 |
||
isc bind 8.2.1 |
||
isc bind 8.3.1 |
||
isc bind 8.3.2 |
||
freebsd freebsd 4.4 |
||
freebsd freebsd 4.5 |
||
openbsd openbsd 3.2 |
||
freebsd freebsd 4.6 |
||
freebsd freebsd 4.7 |
||
openbsd openbsd 3.0 |
||
openbsd openbsd 3.1 |