Vulnerabilities > ISC > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-09-12 | CVE-2007-2930 | Remote Cache Poisoning vulnerability in ISC BIND 8 The (1) NSID_SHUFFLE_ONLY and (2) NSID_USE_POOL PRNG algorithms in ISC BIND 8 before 8.4.7-P1 generate predictable DNS query identifiers when sending outgoing queries such as NOTIFY messages when answering questions as a resolver, which allows remote attackers to poison DNS caches via unknown vectors. network isc | 4.3 |
| 2007-07-24 | CVE-2007-2926 | Remote Cache Poisoning vulnerability in ISC BIND 9 ISC BIND 9 through 9.5.0a5 uses a weak random number generator during generation of DNS query ids when answering resolver questions or sending NOTIFY messages to slave name servers, which makes it easier for remote attackers to guess the next query id and perform DNS cache poisoning. network isc | 4.3 |
| 2007-07-24 | CVE-2007-2925 | Unspecified vulnerability in ISC Bind 9.4.0/9.4.1/9.5.0 The default access control lists (ACL) in ISC BIND 9.4.0, 9.4.1, and 9.5.0a1 through 9.5.0a5 do not set the allow-recursion and allow-query-cache ACLs, which allows remote attackers to make recursive queries and query the cache. network isc | 5.8 |
| 2007-01-25 | CVE-2007-0494 | Data Processing Errors vulnerability in ISC Bind ISC BIND 9.0.x, 9.1.x, 9.2.0 up to 9.2.7, 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 (Bind Forum only) allows remote attackers to cause a denial of service (exit) via a type * (ANY) DNS query response that contains multiple RRsets, which triggers an assertion error, aka the "DNSSEC Validation" vulnerability. | 4.3 |
| 2006-09-06 | CVE-2006-4096 | Remote Denial of Service vulnerability in ISC BIND BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via a flood of recursive queries, which cause an INSIST failure when the response is received after the recursion queue is empty. | 5.0 |
| 2006-08-09 | CVE-2006-3122 | Resource Management Errors vulnerability in ISC Dhcpd 2.0.Pl5/2.0Pl5 The supersede_lease function in memory.c in ISC DHCP (dhcpd) server 2.0pl5 allows remote attackers to cause a denial of service (application crash) via a DHCPDISCOVER packet with a 32 byte client-identifier, which causes the packet to be interpreted as a corrupt uid and causes the server to exit with "corrupt lease uid." | 5.0 |
| 2006-04-27 | CVE-2006-2073 | Denial Of Service vulnerability in ISC BIND TSIG Zone Transfer Unspecified vulnerability in ISC BIND allows remote attackers to cause a denial of service via a crafted DNS message with a "broken" TSIG, as demonstrated by the OUSPG PROTOS DNS test suite. | 5.0 |
| 2006-03-03 | CVE-2006-0987 | Denial-Of-Service vulnerability in ISC Bind 9.3.2 The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses, which allows remote attackers to cause a denial of service (traffic amplification) via DNS queries with spoofed source IP addresses. | 5.0 |
| 2005-05-02 | CVE-2005-0034 | Remote Denial Of Service vulnerability in ISC Bind 9.3.0 An "incorrect assumption" in the authvalidated validator function in BIND 9.3.0, when DNSSEC is enabled, allows remote attackers to cause a denial of service (named server exit) via crafted DNS packets that cause an internal consistency test (self-check) to fail. network isc | 4.3 |
| 2005-05-02 | CVE-2005-0033 | Remote Buffer Overflow vulnerability in ISC Bind 8.4.4/8.4.5 Buffer overflow in the code for recursion and glue fetching in BIND 8.4.4 and 8.4.5 allows remote attackers to cause a denial of service (crash) via queries that trigger the overflow in the q_usedns array that tracks nameservers and addresses. | 5.0 |