Published: 06/12/2010 Updated: 10/10/2018

CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8

VMScore: 356

Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P

named in ISC BIND 9.6.2 prior to 9.6.2-P3, 9.6-ESV prior to 9.6-ESV-R3, and 9.7.x prior to 9.7.2-P3 does not properly handle the combination of signed negative responses and corresponding RRSIG records in the cache, which allows remote malicious users to cause a denial of service (daemon crash) via a query for cached data.

Vulnerable Product	Search on Vulmon	Subscribe to Product
isc bind 9.7.1
isc bind 9.7.0
isc bind 9.6
isc bind 9.7.2
isc bind 9.6.2

It was discovered that Bind would incorrectly allow a ncache entry and a rrsig for the same type A remote attacker could exploit this to cause Bind to crash, resulting in a denial of service (CVE-2010-3613) ...

Several remote vulnerabilities have been discovered in BIND, an implementation of the DNS protocol suite The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2010-3762 When DNSSEC validation is enabled, BIND does not properly handle certain bad signatures if multiple trust anchors exist for a single zone, whi ...

Debian Bug report logs - #605876 BIND 972-P3 (CVE-2010-3613, CVE-2010-3614 and CVE-2010-3615) Package: bind9; Maintainer for bind9 is Debian DNS Team <team+dns@trackerdebianorg>; Source for bind9 is src:bind9 (PTS, buildd, popcon) Reported by: Hideki Yamane <henrich@debianorjp> Date: Sat, 4 Dec 2010 10:51:01 U ...

Debian Bug report logs - #599515 bind9: CVE-2010-3762 Package: bind9; Maintainer for bind9 is Debian DNS Team <team+dns@trackerdebianorg>; Source for bind9 is src:bind9 (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <muehlenhoff@univentionde> Date: Fri, 8 Oct 2010 10:33:01 UTC Severity: grave Tags: securi ...

CWE-264 http://www.ubuntu.com/usn/USN-1025-1 http://secunia.com/advisories/42374 http://secunia.com/advisories/42459 http://www.osvdb.org/69558 http://securitytracker.com/id?1024817 http://www.vupen.com/english/advisories/2010/3102 http://www.isc.org/software/bind/advisories/cve-2010-3613 http://www.vupen.com/english/advisories/2010/3103 http://www.kb.cert.org/vuls/id/706148 http://www.isc.org/announcement/guidance-regarding-dec-1st-2010-security-advisories http://www.securityfocus.com/bid/45133 http://www.vupen.com/english/advisories/2010/3140 http://secunia.com/advisories/42522 http://www.vupen.com/english/advisories/2010/3139 http://www.vupen.com/english/advisories/2010/3138 http://lists.fedoraproject.org/pipermail/package-announce/2010-December/051910.html http://www.debian.org/security/2010/dsa-2130 http://www.redhat.com/support/errata/RHSA-2010-0976.html http://secunia.com/advisories/42671 http://lists.fedoraproject.org/pipermail/package-announce/2010-December/051963.html http://www.redhat.com/support/errata/RHSA-2010-1000.html http://secunia.com/advisories/42707 http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.622190 http://www.redhat.com/support/errata/RHSA-2010-0975.html http://www.mandriva.com/security/advisories?name=MDVSA-2010:253 http://support.avaya.com/css/P8/documents/100124923 http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2011-001.txt.asc http://secunia.com/advisories/43141 http://www.vupen.com/english/advisories/2011/0267 http://lists.vmware.com/pipermail/security-announce/2011/000126.html http://www.vmware.com/security/advisories/VMSA-2011-0004.html http://www.vupen.com/english/advisories/2011/0606 http://support.apple.com/kb/HT5002 http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html http://marc.info/?l=bugtraq&m=130270720601677&w=2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12601 http://www.securityfocus.com/archive/1/516909/100/0/threaded https://usn.ubuntu.com/1025-1/https://nvd.nist.gov https://www.kb.cert.org/vuls/id/706148

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-3613

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect