CVE-2010-3762
published 2010-10-05CVE-2010-3762: ISC BIND before 9.7.2-P2, when DNSSEC validation is enabled, does not properly handle certain bad signatures if multiple trust anchors exist for a single zone…
medium4.3CVSS 3.1
AVNACMAuNCNINAP
ISC BIND before 9.7.2-P2, when DNSSEC validation is enabled, does not properly handle certain bad signatures if multiple trust anchors exist for a single zone, which allows remote attackers to cause a denial of service (daemon crash) via a DNS query.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | bind9 | < bind9 1:9.7.2.dfsg.P2-1 (bookworm) | bind9 1:9.7.2.dfsg.P2-1 (bookworm) |
| isc | bind | <= 9.7.2 | — |
| isc | bind9 | >= 0 < 1:9.7.2.dfsg.P2-1 | 1:9.7.2.dfsg.P2-1 |
| isc | bind9 | >= 0 < 1:9.7.2.dfsg.P2-1 | 1:9.7.2.dfsg.P2-1 |
| isc | bind9 | >= 0 < 1:9.7.2.dfsg.P2-1 | 1:9.7.2.dfsg.P2-1 |
| isc | bind9 | >= 0 < 1:9.7.2.dfsg.P2-1 | 1:9.7.2.dfsg.P2-1 |
| vmware | vmware_esxi | — | — |
| vmware | vmware_tools | — | — |
| vmware | vmware_vsphere | — | — |
| vmware | vmware_workstation | — | — |
CVSS provenance
nvd4.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv4.3MEDIUM