Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2017-3139
HistoryApr 09, 2019 - 6:29 p.m.

CVE-2017-3139

2019-04-0918:29:00
CWE-617
[email protected]
web.nvd.nist.gov
172
nvd
cve-2017-3139
denial of service
bind
dnssec
remote attacker
assertion failure

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.1 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.0%

JSON

A denial of service flaw was found in the way BIND handled DNSSEC validation. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response.

Affected configurations

NVD
Node
redhatenterprise_linux_server_ausMatch6.2
OR
redhatenterprise_linux_server_ausMatch6.4
OR
redhatenterprise_linux_server_ausMatch6.5
OR
redhatenterprise_linux_server_ausMatch6.6
OR
redhatenterprise_linux_server_eusMatch6.7
OR
redhatenterprise_linux_server_tusMatch6.5
OR
redhatenterprise_linux_server_tusMatch6.6

CNA Affected

[
  {
    "product": "BIND",
    "vendor": "Red Hat",
    "versions": [
      {
        "status": "affected",
        "version": "shipped in Red Hat Enterprise Linux 6"
      }
    ]
  }
]

Related

f5 1
prion 1
nvd 1
redhat 2
nessus 10
debiancve 1
veracode 1
openvas 3
cvelist 1
oraclelinux 1
centos 1
redhatcve 2
amazon 1
ubuntucve 1
debian 1
ibm 3
f5
f5
K34701020 : BIND vulnerability CVE-2017-3139
2017-07-28 00:00:00
prion
prion
Design/Logic Flaw
2019-04-09 18:29:00
nvd
nvd
CVE-2017-3139
2019-04-09 18:29:00
redhat
redhat
(RHSA-2017:1202) Important: bind security update
2017-05-08 05:57:05
(RHSA-2017:1582) Important: bind security and bug fix update
2017-06-28 07:45:28
nessus
nessus
CentOS 6 : bind (CESA-2017:1202)
2017-05-10 00:00:00
RHEL 6 : bind (RHSA-2017:1202)
2017-05-09 00:00:00
Scientific Linux Security Update : bind on SL6.x i386/x86_64 (20170508)
2017-05-09 00:00:00
debiancve
debiancve
CVE-2017-3139
2019-04-09 18:29:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:16:36
openvas
openvas
RedHat Update for bind RHSA-2017:1202-01
2017-05-09 00:00:00
CentOS Update for bind CESA-2017:1202 centos6
2017-05-10 00:00:00
Debian: Security Advisory (DLA-1285-1)
2018-02-20 00:00:00
cvelist
cvelist
CVE-2017-3139
2019-04-09 17:07:24
oraclelinux
oraclelinux
bind security update
2017-05-08 00:00:00
centos
centos
bind security update
2017-05-09 16:58:21
redhatcve
redhatcve
CVE-2017-3139
2017-05-08 05:49:21
CVE-2018-5735
2020-04-08 05:00:16
amazon
amazon
Important: bind
2017-05-30 23:49:00
ubuntucve
ubuntucve
CVE-2017-3139
2019-04-09 00:00:00
debian
debian
[SECURITY] [DLA 1285-1] bind9 security update
2018-02-16 21:33:13
ibm
ibm
Security Bulletin: Multiple vulnerabilities in OpenSource ISC Bind affects IBM Netezza Host Management
2019-10-18 03:10:29
Security Bulletin: Vulnerabilities in BIND affect Power Hardware Management Console
2021-09-23 01:45:02
Security Bulletin: Multiple vulnerabilities in coreutils, sudo, jasper, bind, bash, libtirpc, nss and nss-util affect IBM SmartCloud Entry
2020-07-19 00:49:12

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.1 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.0%

JSON
Related for CVE-2017-3139
f51prion1nvd1redhat2nessus10debiancve1veracode1openvas3cvelist1oraclelinux1centos1redhatcve2amazon1ubuntucve1debian1ibm3