[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2015-1349Date: (C)2015-02-23   (M)2023-12-22


named in ISC BIND 9.7.0 through 9.9.6 before 9.9.6-P2 and 9.10.x before 9.10.1-P2, when DNSSEC validation and the managed-keys feature are enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit, or daemon crash) by triggering an incorrect trust-anchor management scenario in which no key is ready for use.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.4
Exploit Score: 4.9
Impact Score: 6.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: HIGH
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: COMPLETE
  
Reference:
APPLE-SA-2015-09-16-4
FEDORA-2015-2543
FEDORA-2015-2548
GLSA-201510-01
MDVSA-2015:054
MDVSA-2015:165
RHSA-2015:0672
SSRT101976
SUSE-SU-2015:1205
USN-2503-1
http://advisories.mageia.org/MGASA-2015-0082.html
https://bugzilla.redhat.com/show_bug.cgi?id=1193820
https://kb.isc.org/article/AA-01235
https://kb.juniper.net/JSA10783
https://kc.mcafee.com/corporate/index?page=content&id=SB10116
https://support.apple.com/HT205219
openSUSE-SU-2015:1250
openSUSE-SU-2015:1326

CPE    92
cpe:/a:isc:bind:9.7.6:p2
cpe:/a:isc:bind:9.7.6:p1
cpe:/a:isc:bind:9.9.3:rc1
cpe:/a:isc:bind:9.8.1:p1
...
CWE    1
CWE-399
OVAL    14
oval:org.secpod.oval:def:204212
oval:org.secpod.oval:def:203592
oval:org.secpod.oval:def:702422
oval:org.secpod.oval:def:1500927
...

© SecPod Technologies