Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Bind
(Isc)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 174 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2001-02-12 | CVE-2001-0012 | BIND 4 and BIND 8 allow remote attackers to access sensitive information such as environment variables. | Bind | N/A | ||
| 2001-02-12 | CVE-2001-0011 | Buffer overflow in nslookupComplain function in BIND 4 allows remote attackers to gain root privileges. | Bind | N/A | ||
| 2001-02-12 | CVE-2001-0010 | Buffer overflow in transaction signature (TSIG) handling code in BIND 8 allows remote attackers to gain root privileges. | Bind | N/A | ||
| 2000-12-11 | CVE-2000-1029 | Buffer overflow in host command allows a remote attacker to execute arbitrary commands via a long response to an AXFR query. | Bind | N/A | ||
| 2000-12-19 | CVE-2000-0887 | named in BIND 8.2 through 8.2.2-P6 allows remote attackers to cause a denial of service by making a compressed zone transfer (ZXFR) request and performing a name service query on an authoritative record that is not cached, aka the "zxfr bug." | Bind | N/A | ||
| 2000-05-03 | CVE-2000-0335 | The resolver in glibc 2.1.3 uses predictable IDs, which allows a local attacker to spoof DNS query results. | Glibc, Bind | N/A | ||
| 1998-04-10 | CVE-1999-1499 | named in ISC BIND 4.9 and 8.1 allows local users to destroy files via a symlink attack on (1) named_dump.db when root kills the process with a SIGINT, or (2) named.stats when SIGIOT is used. | Bind | N/A | ||
| 1999-11-10 | CVE-1999-0849 | Denial of service in BIND named via maxdname. | Bind | N/A | ||
| 1999-11-10 | CVE-1999-0848 | Denial of service in BIND named via consuming more than "fdmax" file descriptors. | Bind, Solaris, Sunos | N/A | ||
| 1999-11-10 | CVE-1999-0837 | Denial of service in BIND by improperly closing TCP sessions via so_linger. | Bind, Solaris, Sunos | N/A |