Download
| Alert*
oval:org.secpod.oval:def:601867
Florian Maury from ANSSI discovered that unbound, a validating, recursive, and caching DNS resolver, was prone to a denial of service vulnerability. An attacker crafting a malicious zone and able to emit queries to the server can trick the resolver into following an endless series of delegations, l ... oval:org.secpod.oval:def:52393 unbound: validating, recursive, caching DNS resolver Unbound could be made to consume resources if it received specially crafted network traffic. oval:org.secpod.oval:def:64149 Two vulnerabiliites have been discovered in Unbound, a recursive-only caching DNS server; a traffic amplification attack against third party authoritative name servers and insufficient sanitisation of replies from upstream servers could result in denial of service via an infinite loop. The version ... oval:org.secpod.oval:def:702387 unbound: validating, recursive, caching DNS resolver Unbound could be made to consume resources if it received specially crafted network traffic. oval:org.secpod.oval:def:600653 It was discovered that Unbound, a recursive DNS resolver, would crash when processing certain malformed DNS responses from authoritative DNS servers, leading to denial of service. CVE-2011-4528 Unbound attempts to free unallocated memory during processing of duplicate CNAME records in a signed zone. ... oval:org.secpod.oval:def:601455 unbound is installed oval:org.secpod.oval:def:1098 Unbound is installed oval:org.secpod.oval:def:1099 The host is installed with Unbound and is prone to remote denial-of-service vulnerability. A flaw is present in the application where assertion fails when unbound generates an empty error reply in response to a query. Successful exploitation allows remote attacker to cause to cause a denial of servi ... oval:org.secpod.oval:def:88576 unbound: validating, recursive, caching DNS resolver Unbound could be made to cache rogue domain names. oval:org.secpod.oval:def:604868 Two vulnerabiliites have been discovered in Unbound, a recursive-only caching DNS server; a traffic amplification attack against third party authoritative name servers and insufficient sanitisation of replies from upstream servers could result in denial of service via an infinite loop. The version ... oval:org.secpod.oval:def:69767 X41 D-Sec discovered that unbound, a validating, recursive, and caching DNS resolver, did not correctly process some NOTIFY queries. This could lead to remote denial-of-service by application crash. oval:org.secpod.oval:def:59278 X41 D-Sec discovered that unbound, a validating, recursive, and caching DNS resolver, did not correctly process some NOTIFY queries. This could lead to remote denial-of-service by application crash. oval:org.secpod.oval:def:51049 unbound: validating, recursive, caching DNS resolver A security issue was fixed in Unbound. oval:org.secpod.oval:def:704108 unbound: validating, recursive, caching DNS resolver A security issue was fixed in Unbound. oval:org.secpod.oval:def:98521 Two vulnerabilities were discovered in unbound, a validating, recursive, caching DNS resolver. Specially crafted DNSSEC answers could lead unbound down a very CPU intensive and time costly DNSSEC or NSEC3 hash validation path, resulting in denial of service. Details can be found at https://nlnetla ... oval:org.secpod.oval:def:98736 unbound: validating, recursive, caching DNS resolver Several security issues were fixed in Unbound. oval:org.secpod.oval:def:72095 unbound: validating, recursive, caching DNS resolver Several security issues were fixed in Unbound. |