CVE-2007-0493
published 2007-01-25CVE-2007-0493: Use-after-free vulnerability in ISC BIND 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 (Bind Forum only) allows remote…
high7.8CVSS 3.1
AVNACLAuNCNINAC
Use-after-free vulnerability in ISC BIND 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 (Bind Forum only) allows remote attackers to cause a denial of service (named daemon crash) via unspecified vectors that cause named to "dereference a freed fetch context."
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | bind9 | < bind9 1:9.3.4-2 (bookworm) | bind9 1:9.3.4-2 (bookworm) |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind9 | >= 0 < 1:9.3.4-2 | 1:9.3.4-2 |
| isc | bind9 | >= 0 < 1:9.3.4-2 | 1:9.3.4-2 |
| isc | bind9 | >= 0 < 1:9.3.4-2 | 1:9.3.4-2 |
| isc | bind9 | >= 0 < 1:9.3.4-2 | 1:9.3.4-2 |
CVSS provenance
nvd7.8HIGHAV:N/AC:L/Au:N/C:N/I:N/A:C
osv7.8HIGH