Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2015-4620
HistoryJul 08, 2015 - 2:59 p.m.

CVE-2015-4620

2015-07-0814:59:04
CWE-17
mitre
web.nvd.nist.gov
850
In Wild
2
isc bind
dns
cve-2015-4620
denial of service
nvd

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

8.1

Confidence

High

EPSS

0.157

Percentile

96.0%

JSON

name.c in named in ISC BIND 9.7.x through 9.9.x before 9.9.7-P1 and 9.10.x before 9.10.2-P2, when configured as a recursive resolver with DNSSEC validation, allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) by constructing crafted zone data and then making a query for a name in that zone.

Affected configurations

Nvd
Node
iscbindMatch9.7.0
OR
iscbindMatch9.7.0b1
OR
iscbindMatch9.7.0p1
OR
iscbindMatch9.7.0p2
OR
iscbindMatch9.7.0rc1
OR
iscbindMatch9.7.0rc2
OR
iscbindMatch9.7.1
OR
iscbindMatch9.7.1p1
OR
iscbindMatch9.7.1p2
OR
iscbindMatch9.7.1rc1
OR
iscbindMatch9.7.2
OR
iscbindMatch9.7.2p1
OR
iscbindMatch9.7.2p2
OR
iscbindMatch9.7.2p3
OR
iscbindMatch9.7.2rc1
OR
iscbindMatch9.7.3
OR
iscbindMatch9.7.3b1
OR
iscbindMatch9.7.3p1
OR
iscbindMatch9.7.3rc1
OR
iscbindMatch9.7.4
OR
iscbindMatch9.7.4b1
OR
iscbindMatch9.7.4p1
OR
iscbindMatch9.7.4rc1
OR
iscbindMatch9.7.5
OR
iscbindMatch9.7.5b1
OR
iscbindMatch9.7.5rc1
OR
iscbindMatch9.7.5rc2
OR
iscbindMatch9.7.6
OR
iscbindMatch9.7.6p1
OR
iscbindMatch9.7.6p2
OR
iscbindMatch9.7.7
OR
iscbindMatch9.8.0
OR
iscbindMatch9.8.0a1
OR
iscbindMatch9.8.0b1
OR
iscbindMatch9.8.0p1
OR
iscbindMatch9.8.0p2
OR
iscbindMatch9.8.0p4
OR
iscbindMatch9.8.0rc1
OR
iscbindMatch9.8.1
OR
iscbindMatch9.8.1b1
OR
iscbindMatch9.8.1b2
OR
iscbindMatch9.8.1b3
OR
iscbindMatch9.8.1p1
OR
iscbindMatch9.8.1rc1
OR
iscbindMatch9.8.2b1
OR
iscbindMatch9.8.2rc1
OR
iscbindMatch9.8.2rc2
OR
iscbindMatch9.8.3
OR
iscbindMatch9.8.3p1
OR
iscbindMatch9.8.3p2
OR
iscbindMatch9.8.4
OR
iscbindMatch9.8.5
OR
iscbindMatch9.8.5b1
OR
iscbindMatch9.8.5b2
OR
iscbindMatch9.8.5p1
OR
iscbindMatch9.8.5p2
OR
iscbindMatch9.8.5rc1
OR
iscbindMatch9.8.5rc2
OR
iscbindMatch9.8.6b1
OR
iscbindMatch9.8.6rc1
OR
iscbindMatch9.8.6rc2
OR
iscbindMatch9.9.0
OR
iscbindMatch9.9.0a1
OR
iscbindMatch9.9.0a2
OR
iscbindMatch9.9.0a3
OR
iscbindMatch9.9.0b1
OR
iscbindMatch9.9.0b2
OR
iscbindMatch9.9.0rc1
OR
iscbindMatch9.9.0rc2
OR
iscbindMatch9.9.0rc3
OR
iscbindMatch9.9.0rc4
OR
iscbindMatch9.9.1
OR
iscbindMatch9.9.1p1
OR
iscbindMatch9.9.1p2
OR
iscbindMatch9.9.2
OR
iscbindMatch9.9.3
OR
iscbindMatch9.9.3b1
OR
iscbindMatch9.9.3b2
OR
iscbindMatch9.9.3p1
OR
iscbindMatch9.9.3p2
OR
iscbindMatch9.9.3rc1
OR
iscbindMatch9.9.3rc2
OR
iscbindMatch9.9.4b1
OR
iscbindMatch9.9.5
OR
iscbindMatch9.9.6
OR
iscbindMatch9.9.6p1
OR
iscbindMatch9.9.7b1
OR
iscbindMatch9.9.7rc1
OR
iscbindMatch9.9.7rc2
OR
iscbindMatch9.10.0
OR
iscbindMatch9.10.1
OR
iscbindMatch9.10.1p1
OR
iscbindMatch9.10.2b1
OR
iscbindMatch9.10.2p1
OR
iscbindMatch9.10.2rc1
VendorProductVersionCPE
iscbind9.9.0cpe:/a:isc:bind:9.9.0:b1::
iscbind9.8.5cpe:/a:isc:bind:9.8.5:rc1::
iscbind9.8.5cpe:/a:isc:bind:9.8.5:::
iscbind9.8.5cpe:/a:isc:bind:9.8.5:p2::
iscbind9.7.2cpe:/a:isc:bind:9.7.2:p1::
iscbind9.7.5cpe:/a:isc:bind:9.7.5:rc1::
iscbind9.9.1cpe:/a:isc:bind:9.9.1:p2::
iscbind9.9.3cpe:/a:isc:bind:9.9.3:p1::
iscbind9.7.0cpe:/a:isc:bind:9.7.0:::
iscbind9.8.2cpe:/a:isc:bind:9.8.2:b1::
Rows per page:
1-10 of 951

References

Social References

More

Related

nessus 26
fedora 3
veracode 1
checkpoint_advisories 1
ubuntucve 1
ubuntu 1
prion 1
oraclelinux 2
openvas 22
debian 3
amazon 1
redhat 2
mageia 1
freebsd 1
osv 2
debiancve 1
cisa 1
archlinux 1
centos 2
freebsd_advisory 1
securityvulns 2
cvelist 1
slackware 1
f5 2
nvd 1
ibm 1
suse 2
gentoo 1
nessus
nessus
Debian DLA-270-1 : bind9 security update
2015-07-14 00:00:00
Oracle Linux 7 : bind (ELSA-2015-1443)
2015-07-21 00:00:00
F5 Networks BIG-IP : BIND vulnerability (SOL16912)
2015-07-29 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: bind-9.10.2-3.P2.fc22
2015-07-18 01:55:20
[SECURITY] Fedora 21 Update: bind-9.9.6-9.P1.fc21
2015-07-21 08:22:09
[SECURITY] Fedora 21 Update: bind-9.9.6-10.P1.fc21
2015-08-01 02:26:01
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:06:50
checkpoint_advisories
checkpoint_advisories
ISC BIND DNSSEC Validation Denial of Service (CVE-2015-4620)
2015-10-06 00:00:00
ubuntucve
ubuntucve
CVE-2015-4620
2015-07-07 00:00:00
ubuntu
ubuntu
Bind vulnerability
2015-07-07 00:00:00
prion
prion
Authentication flaw
2015-07-08 14:59:00
oraclelinux
oraclelinux
bind security update
2015-07-29 00:00:00
bind security update
2015-07-20 00:00:00
openvas
openvas
ISC BIND Denial of Service Vulnerability (Oct 2015)
2015-10-07 00:00:00
Slackware: Security Advisory (SSA:2015-188-04)
2022-04-21 00:00:00
CentOS Update for bind CESA-2015:1443 centos7
2015-07-21 00:00:00
debian
debian
[SECURITY] [DSA 3304-1] bind9 security update
2015-07-07 19:54:36
[SECURITY] [DSA 3304-1] bind9 security update
2015-07-07 19:54:36
[SECURITY] [DLA 270-1] bind9 security update
2015-07-11 15:54:42
amazon
amazon
Important: bind
2015-07-22 10:00:00
redhat
redhat
(RHSA-2015:1443) Important: bind security update
2015-07-20 00:00:00
(RHSA-2015:1471) Important: bind security update
2015-07-22 00:00:00
mageia
mageia
Updated bind package fixes security vulnerability
2015-07-09 11:09:20
freebsd
freebsd
bind -- denial of service vulnerability
2015-07-07 00:00:00
osv
osv
bind9 - security update
2015-07-11 00:00:00
bind9 - security update
2015-07-07 00:00:00
debiancve
debiancve
CVE-2015-4620
2015-07-08 14:59:04
cisa
cisa
ISC Releases Security Updates for BIND
2015-07-08 00:00:00
archlinux
archlinux
bind: denial of service
2015-07-07 00:00:00
centos
centos
bind security update
2015-07-27 10:29:04
bind security update
2015-07-20 18:55:08
freebsd_advisory
freebsd_advisory
FreeBSD-SA-15:11.bind
2015-07-07 00:00:00
securityvulns
securityvulns
ISC bind named DoS
2015-07-13 00:00:00
[USN-2669-1] Bind vulnerability
2015-07-13 00:00:00
cvelist
cvelist
CVE-2015-4620
2015-07-08 14:00:00
slackware
slackware
[slackware-security] bind
2015-07-08 00:01:18
f5
f5
K16912 : BIND vulnerability CVE-2015-4620
2015-11-06 00:00:00
SOL16912 - BIND vulnerability CVE-2015-4620
2015-07-27 00:00:00
nvd
nvd
CVE-2015-4620
2015-07-08 14:59:04
ibm
ibm
Security Bulletin: IBM i is affected by networking BIND vulnerabilities CVE-2015-5477 and CVE-2015-4620.
2019-12-18 14:26:38
suse
suse
Security update for bind (important)
2015-07-08 16:08:18
Security update for bind (important)
2015-07-31 12:08:25
gentoo
gentoo
BIND: Denial of service
2015-10-18 00:00:00

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

8.1

Confidence

High

EPSS

0.157

Percentile

96.0%

JSON
Related for CVE-2015-4620
nessus26fedora3veracode1checkpoint_advisories1ubuntucve1ubuntu1prion1oraclelinux2openvas22debian3amazon1redhat2mageia1freebsd1osv2debiancve1cisa1archlinux1centos2freebsd_advisory1securityvulns2cvelist1slackware1f52nvd1ibm1suse2gentoo1