Vulnerabilities > ISC > Bind > 9.1.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-04-27 | CVE-2006-2073 | Denial Of Service vulnerability in ISC BIND TSIG Zone Transfer Unspecified vulnerability in ISC BIND allows remote attackers to cause a denial of service via a crafted DNS message with a "broken" TSIG, as demonstrated by the OUSPG PROTOS DNS test suite. | 5.0 |
2002-06-18 | CVE-2002-0400 | Remote Denial Of Service vulnerability in ISC BIND 9 ISC BIND 9 before 9.2.1 allows remote attackers to cause a denial of service (shutdown) via a malformed DNS packet that triggers an error condition that is not properly handled when the rdataset parameter to the dns_message_findtype() function in message.c is not NULL, aka DoS_findtype. | 5.0 |
2001-07-21 | CVE-2001-0497 | Incorrect Default Permissions vulnerability in ISC Bind dnskeygen in BIND 8.2.4 and earlier, and dnssec-keygen in BIND 9.1.2 and earlier, set insecure permissions for a HMAC-MD5 shared secret key file used for DNS Transactional Signatures (TSIG), which allows attackers to obtain the keys and perform dynamic DNS updates. | 7.8 |