CVE-2009-4008
published 2011-06-02CVE-2009-4008: Unbound before 1.4.4 does not send responses for signed zones after mishandling an unspecified query, which allows remote attackers to cause a denial of…
PriorityP420medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
2.70%
84.1th percentile
Unbound before 1.4.4 does not send responses for signed zones after mishandling an unspecified query, which allows remote attackers to cause a denial of service (DNSSEC outage) via a crafted query.
Affected
35 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | unbound | < unbound 1.4.4-1 (bookworm) | unbound 1.4.4-1 (bookworm) |
| nlnetlabs | unbound | <= 1.4.3 | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
| nlnetlabs | unbound | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_debian5.0LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-cjjv-pc59-mghf: Unbound before 1
ghsa_unreviewed·2022-05-02
CVE-2009-4008 [MEDIUM] GHSA-cjjv-pc59-mghf: Unbound before 1
Unbound before 1.4.4 does not send responses for signed zones after mishandling an unspecified query, which allows remote attackers to cause a denial of service (DNSSEC outage) via a crafted query.
OSV
CVE-2009-4008: Unbound before 1
osv·2011-06-02·CVSS 5.0
CVE-2009-4008 [MEDIUM] CVE-2009-4008: Unbound before 1
Unbound before 1.4.4 does not send responses for signed zones after mishandling an unspecified query, which allows remote attackers to cause a denial of service (DNSSEC outage) via a crafted query.
Debian
CVE-2009-4008: unbound - Unbound before 1.4.4 does not send responses for signed zones after mishandling ...
vendor_debian·2009·CVSS 5.0
CVE-2009-4008 [MEDIUM] CVE-2009-4008: unbound - Unbound before 1.4.4 does not send responses for signed zones after mishandling ...
Unbound before 1.4.4 does not send responses for signed zones after mishandling an unspecified query, which allows remote attackers to cause a denial of service (DNSSEC outage) via a crafted query.
Scope: local
bookworm: resolved (fixed in 1.4.4-1)
bullseye: resolved (fixed in 1.4.4-1)
forky: resolved (fixed in 1.4.4-1)
sid: resolved (fixed in 1.4.4-1)
trixie: resolved (fixed in 1.4.4-1)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://packages.debian.org/changelogs/pool/main/u/unbound/unbound_1.4.6-1/changeloghttp://unbound.nlnetlabs.nl/downloads/unbound-1.4.4.tar.gzhttp://www.debian.org/security/2011/dsa-2243http://packages.debian.org/changelogs/pool/main/u/unbound/unbound_1.4.6-1/changeloghttp://unbound.nlnetlabs.nl/downloads/unbound-1.4.4.tar.gzhttp://www.debian.org/security/2011/dsa-2243
2011-06-02
Published