Published: 31/12/2002 Updated: 19/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

BIND 4 and BIND 8, when resolving recursive DNS queries for arbitrary hosts, allows remote malicious users to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed responses, which increases the possibility of successfully spoofing a response in a way that is more efficient than brute force methods.

Vulnerable Product	Search on Vulmon	Subscribe to Product
isc bind 4.9
isc bind 4.9.10
isc bind 4.9.7
isc bind 4.9.8
isc bind 8.2.2
isc bind 8.2.7
isc bind 8.3.0
isc bind 4.9.5
isc bind 4.9.6
isc bind 8.2.5
isc bind 8.2.6
isc bind 4.9.2
isc bind 4.9.3
isc bind 4.9.9
isc bind 8.2
isc bind 8.2.1
isc bind 8.3.1
isc bind 8.3.2
isc bind 4.9.4
isc bind 8.2.3
isc bind 8.2.4
isc bind 8.3.3
isc bind 8.3.4

NVD-CWE-Other http://www.rnp.br/cais/alertas/2002/cais-ALR-19112002a.html http://www.imconf.net/imw-2002/imw2002-papers/198.pdf http://www.kb.cert.org/vuls/id/IAFY-5FZSLQ http://www.kb.cert.org/vuls/id/IAFY-5FDT4U http://www.kb.cert.org/vuls/id/IAFY-5FDPYP http://lists.apple.com/archives/Security-announce/2002/Nov/msg00000.html http://www.kb.cert.org/vuls/id/457875 http://secunia.com/advisories/20217 http://www.vupen.com/english/advisories/2006/1923 http://www.securityfocus.com/archive/1/434523/100/0/threaded https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-2211

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect