SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

[Forgot Password]

Paid content will be excluded from the download.

Download | Alert*

CVE

CVE-2009-0025

Date: (C)2009-01-07 (M)2024-02-01

BIND 9.6.0, 9.5.1, 9.5.0, 9.4.3, and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 6.8
Exploit Score: 8.6
Impact Score: 6.4

CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL

Reference:

http://www.securityfocus.com/archive/1/499827/100/0/threaded

http://www.securityfocus.com/archive/1/500207/100/0/threaded

http://www.securityfocus.com/archive/1/502322/100/0/threaded

SUNALERT-250846

APPLE-SA-2009-05-12

FEDORA-2009-0350

FreeBSD-SA-09:04

SSA:2009-014-02

http://groups.google.com/group/comp.protocols.dns.bind/browse_thread/thread/49ef622c8329fd33

http://support.apple.com/kb/HT3549

http://support.avaya.com/elmodocs2/security/ASA-2009-045.htm

http://wiki.rpath.com/Advisories:rPSA-2009-0009

http://www.ocert.org/advisories/ocert-2008-016.html

http://www.openbsd.org/errata44.html#008_bind

http://www.vmware.com/security/advisories/VMSA-2009-0004.html

https://issues.rpath.com/browse/RPL-2938

https://www.isc.org/software/bind/advisories/cve-2009-0025

oval:org.mitre.oval:def:10879

oval:org.mitre.oval:def:5569

cpe:/a:isc:bind:9.2.4:rc2
cpe:/a:isc:bind:9.2.4:rc3
cpe:/a:isc:bind:9.2.4:rc4
cpe:/a:isc:bind:9.2.4:rc5
...

oval:org.secpod.oval:def:400062
oval:org.secpod.oval:def:700459
oval:org.secpod.oval:def:202704
oval:org.secpod.oval:def:600451
...

© SecPod Technologies