CVE-2007-2925
published 2007-07-24CVE-2007-2925: The default access control lists (ACL) in ISC BIND 9.4.0, 9.4.1, and 9.5.0a1 through 9.5.0a5 do not set the allow-recursion and allow-query-cache ACLs, which…
medium5.8CVSS 3.1
AVNACMAuNCPIPAN
The default access control lists (ACL) in ISC BIND 9.4.0, 9.4.1, and 9.5.0a1 through 9.5.0a5 do not set the allow-recursion and allow-query-cache ACLs, which allows remote attackers to make recursive queries and query the cache.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | bind9 | < bind9 1:9.4.1-P1-1 (bookworm) | bind9 1:9.4.1-P1-1 (bookworm) |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind9 | >= 0 < 1:9.4.1-P1-1 | 1:9.4.1-P1-1 |
| isc | bind9 | >= 0 < 1:9.4.1-P1-1 | 1:9.4.1-P1-1 |
| isc | bind9 | >= 0 < 1:9.4.1-P1-1 | 1:9.4.1-P1-1 |
| isc | bind9 | >= 0 < 1:9.4.1-P1-1 | 1:9.4.1-P1-1 |
CVSS provenance
nvd5.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:N
osv5.8MEDIUM