CVE-2017-3143
published 2019-01-16CVE-2017-3143: An attacker who is able to send and receive messages to an authoritative DNS server and who has knowledge of a valid TSIG key name for the zone and service…
medium5.9CVSS 3.0
AVNACHPRNUINSUCNIHAN
An attacker who is able to send and receive messages to an authoritative DNS server and who has knowledge of a valid TSIG key name for the zone and service being targeted may be able to manipulate BIND into accepting an unauthorized dynamic update. Affects BIND 9.4.0->9.8.8, 9.9.0->9.9.10-P1, 9.10.0->9.10.5-P1, 9.11.0->9.11.1-P1, 9.9.3-S1->9.9.10-S2, 9.10.5-S1->9.10.5-S2.
Affected
36 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | bind9 | < bind9 1:9.10.3.dfsg.P4-12.4 (bookworm) | bind9 1:9.10.3.dfsg.P4-12.4 (bookworm) |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | 9.10.0 – 9.10.5 | — |
| isc | bind | 9.11.0 – 9.11.1 | — |
| isc | bind | 9.4.0 – 9.8.8 | — |
| isc | bind | 9.9.0 – 9.9.10 | — |
| isc | bind9 | >= 0 < 1:9.10.3.dfsg.P4-12.4 | 1:9.10.3.dfsg.P4-12.4 |
| isc | bind9 | >= 0 < 1:9.10.3.dfsg.P4-12.4 | 1:9.10.3.dfsg.P4-12.4 |
| isc | bind9 | >= 0 < 1:9.10.3.dfsg.P4-12.4 | 1:9.10.3.dfsg.P4-12.4 |
| isc | bind9 | >= 0 < 1:9.10.3.dfsg.P4-12.4 | 1:9.10.3.dfsg.P4-12.4 |
| isc | bind9 | >= 0 < 1:9.9.5.dfsg-3ubuntu0.15 | 1:9.9.5.dfsg-3ubuntu0.15 |
| isc | bind9 | >= 0 < 1:9.9.5.dfsg-3ubuntu0.16 | 1:9.9.5.dfsg-3ubuntu0.16 |
| isc | bind9 | >= 0 < 1:9.10.3.dfsg.P4-8ubuntu1.7 | 1:9.10.3.dfsg.P4-8ubuntu1.7 |
| isc | bind9 | >= 0 < 1:9.10.3.dfsg.P4-8ubuntu1.8 | 1:9.10.3.dfsg.P4-8ubuntu1.8 |
| isc | bind_9 | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_server | — | — |
CVSS provenance
nvdv3.05.9MEDIUMCVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
osv5.9MEDIUM