Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2013-6230
HistoryNov 08, 2013 - 4:47 a.m.

CVE-2013-6230

2013-11-0804:47:23
CWE-264
[email protected]
web.nvd.nist.gov
2

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.8

Confidence

Low

EPSS

0.005

Percentile

75.3%

JSON

The Winsock WSAIoctl API in Microsoft Windows Server 2008, as used in ISC BIND 9.6-ESV before 9.6-ESV-R10-P1, 9.8 before 9.8.6-P1, 9.9 before 9.9.4-P1, 9.9.3-S1, 9.9.4-S1, and other products, does not properly support the SIO_GET_INTERFACE_LIST command for netmask 255.255.255.255, which allows remote attackers to bypass intended IP address restrictions by leveraging misinterpretation of this netmask as a 0.0.0.0 netmask.

Affected configurations

NVD
Node
iscbindMatch9.6
OR
iscbindMatch9.6r5_p1
OR
iscbindMatch9.6r6_b1
OR
iscbindMatch9.6r6_rc1
OR
iscbindMatch9.6r6_rc2
OR
iscbindMatch9.6r7_p1
OR
iscbindMatch9.6r7_p2
OR
iscbindMatch9.6r9_p1
OR
iscbindMatch9.8.0
OR
iscbindMatch9.8.0a1
OR
iscbindMatch9.8.0b1
OR
iscbindMatch9.8.0p1
OR
iscbindMatch9.8.0p2
OR
iscbindMatch9.8.0p4
OR
iscbindMatch9.8.0rc1
OR
iscbindMatch9.8.1
OR
iscbindMatch9.8.1b1
OR
iscbindMatch9.8.1b2
OR
iscbindMatch9.8.1b3
OR
iscbindMatch9.8.1p1
OR
iscbindMatch9.8.1rc1
OR
iscbindMatch9.8.2b1
OR
iscbindMatch9.8.2rc1
OR
iscbindMatch9.8.2rc2
OR
iscbindMatch9.8.3
OR
iscbindMatch9.8.3p1
OR
iscbindMatch9.8.3p2
OR
iscbindMatch9.8.4
OR
iscbindMatch9.8.5
OR
iscbindMatch9.8.5b1
OR
iscbindMatch9.8.5b2
OR
iscbindMatch9.8.5p1
OR
iscbindMatch9.8.5p2
OR
iscbindMatch9.8.5rc1
OR
iscbindMatch9.8.5rc2
OR
iscbindMatch9.8.6b1
OR
iscbindMatch9.9.0
OR
iscbindMatch9.9.0a1
OR
iscbindMatch9.9.0a2
OR
iscbindMatch9.9.0a3
OR
iscbindMatch9.9.0b1
OR
iscbindMatch9.9.0b2
OR
iscbindMatch9.9.0rc1
OR
iscbindMatch9.9.0rc2
OR
iscbindMatch9.9.0rc3
OR
iscbindMatch9.9.0rc4
OR
iscbindMatch9.9.1
OR
iscbindMatch9.9.1p1
OR
iscbindMatch9.9.1p2
OR
iscbindMatch9.9.2
OR
iscbindMatch9.9.3
OR
iscbindMatch9.9.3b1
OR
iscbindMatch9.9.3b2
OR
iscbindMatch9.9.3p1
OR
iscbindMatch9.9.3p2
OR
iscbindMatch9.9.3rc1
OR
iscbindMatch9.9.3rc2
OR
iscbindMatch9.9.4b1

Related

altlinux 3
ubuntucve 1
cvelist 1
prion 1
cve 1
debiancve 1
openvas 2
nessus 2
slackware 1
altlinux
altlinux
Security fix for the ALT Linux 8 package bind version 9.9.4-alt2
2013-11-28 00:00:00
Security fix for the ALT Linux 7 package bind version 9.9.4-alt2
2013-11-28 00:00:00
Security fix for the ALT Linux 9 package bind version 9.9.4-alt2
2013-11-28 00:00:00
ubuntucve
ubuntucve
CVE-2013-6230
2013-11-08 00:00:00
cvelist
cvelist
CVE-2013-6230
2013-11-08 02:00:00
prion
prion
Command injection
2013-11-08 04:47:00
cve
cve
CVE-2013-6230
2013-11-08 04:47:23
debiancve
debiancve
CVE-2013-6230
2013-11-08 04:47:23
openvas
openvas
ISC BIND Winsock API Vulnerability (CVE-2013-6230) - Windows
2021-09-06 00:00:00
Slackware: Security Advisory (SSA:2014-175-01)
2022-04-21 00:00:00
nessus
nessus
ISC BIND 9 localnets ACL Security Bypass
2013-11-13 00:00:00
Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / current : bind (SSA:2014-175-01)
2014-06-25 00:00:00
slackware
slackware
[slackware-security] bind
2014-06-24 23:46:33

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.8

Confidence

Low

EPSS

0.005

Percentile

75.3%

JSON
Related for NVD:CVE-2013-6230
altlinux3ubuntucve1cvelist1prion1cve1debiancve1openvas2nessus2slackware1