Vulnerabilities > ISC > Bind > 4.9.5
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-11-29 | CVE-2002-0029 | Buffer Overflow vulnerability in ISC BIND DNS Resolver Buffer overflows in the DNS stub resolver library in ISC BIND 4.9.2 through 4.9.10, and other derived libraries such as BSD libc and GNU glibc, allow remote attackers to execute arbitrary code via DNS server responses that trigger the overflow in the (1) getnetbyname, or (2) getnetbyaddr functions, aka "LIBRESOLV: buffer overrun" and a different vulnerability than CVE-2002-0684. | 7.5 |
| 2001-07-21 | CVE-2001-0497 | Incorrect Default Permissions vulnerability in ISC Bind dnskeygen in BIND 8.2.4 and earlier, and dnssec-keygen in BIND 9.1.2 and earlier, set insecure permissions for a HMAC-MD5 shared secret key file used for DNS Transactional Signatures (TSIG), which allows attackers to obtain the keys and perform dynamic DNS updates. | 7.8 |
| 2001-02-12 | CVE-2001-0013 | Unspecified vulnerability in ISC Bind Format string vulnerability in nslookupComplain function in BIND 4 allows remote attackers to gain root privileges. | 10.0 |
| 2001-02-12 | CVE-2001-0012 | Unspecified vulnerability in ISC Bind BIND 4 and BIND 8 allow remote attackers to access sensitive information such as environment variables. | 5.0 |
| 2001-02-12 | CVE-2001-0011 | Unspecified vulnerability in ISC Bind Buffer overflow in nslookupComplain function in BIND 4 allows remote attackers to gain root privileges. | 10.0 |
| 1999-11-10 | CVE-1999-0849 | Unspecified vulnerability in ISC Bind Denial of service in BIND named via maxdname. | 5.0 |
| 1997-08-13 | CVE-1999-0024 | DNS cache poisoning via BIND, by predictable query IDs. | 5.0 |