CVE-2010-3613
published 2010-12-06CVE-2010-3613: named in ISC BIND 9.6.2 before 9.6.2-P3, 9.6-ESV before 9.6-ESV-R3, and 9.7.x before 9.7.2-P3 does not properly handle the combination of signed negative…
medium4CVSS 3.1
AVNACLAuSCNINAP
named in ISC BIND 9.6.2 before 9.6.2-P3, 9.6-ESV before 9.6-ESV-R3, and 9.7.x before 9.7.2-P3 does not properly handle the combination of signed negative responses and corresponding RRSIG records in the cache, which allows remote attackers to cause a denial of service (daemon crash) via a query for cached data.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | bind9 | < bind9 1:9.7.2.dfsg.P3-1 (bookworm) | bind9 1:9.7.2.dfsg.P3-1 (bookworm) |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind9 | >= 0 < 1:9.7.2.dfsg.P3-1 | 1:9.7.2.dfsg.P3-1 |
| isc | bind9 | >= 0 < 1:9.7.2.dfsg.P3-1 | 1:9.7.2.dfsg.P3-1 |
| isc | bind9 | >= 0 < 1:9.7.2.dfsg.P3-1 | 1:9.7.2.dfsg.P3-1 |
| isc | bind9 | >= 0 < 1:9.7.2.dfsg.P3-1 | 1:9.7.2.dfsg.P3-1 |
| vmware | vmware_esxi | — | — |
| vmware | vmware_tools | — | — |
| vmware | vmware_vsphere | — | — |
| vmware | vmware_workstation | — | — |
CVSS provenance
nvd4.0MEDIUMAV:N/AC:L/Au:S/C:N/I:N/A:P
osv4.0MEDIUM