Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:20595
HistoryJun 02, 2011 - 12:00 a.m.

ISC BIND 9 Large RRSIG RRsets远程拒绝服务漏洞

2011-06-0200:00:00
Root
www.seebug.org
144

EPSS

0.943

Percentile

99.2%

JSON

BUGTRAQ ID: 48007
CVE(CAN) ID: CVE-2011-1910

BIND是一个应用非常广泛的DNS协议的实现,由ISC负责维护,具体的开发由Nominum公司完成。

ISC BIND 9在实现上存在远程拒绝服务漏洞,远程攻击者可利用此漏洞造成应用程序进程崩溃,拒绝服务合法用户。

由于错误的处理了某些源记录集RRsets, 攻击者可用过大的RRSIG RRsets设置DNSSEC签署的授权DNS服务器作为触发器,然后向缓存解析器请求故障服务器服务的域中不存在的名称,获取的回应将触发漏洞。

FreeBSD FreeBSD 8.x
FreeBSD FreeBSD 7.x
厂商补丁:

FreeBSD

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://www.freebsd.org/security/index.html

Related

redhat 1
openvas 44
slackware 2
debiancve 1
prion 1
centos 1
nessus 25
osv 1
freebsd_advisory 1
securityvulns 4
f5 2
debian 1
cve 1
veracode 1
ubuntucve 1
oraclelinux 2
nvd 1
fedora 8
cisa 1
checkpoint_advisories 1
freebsd 1
cvelist 1
cert 1
suse 1
ubuntu 1
gentoo 1
redhat
redhat
(RHSA-2011:0845) Important: bind security update
2011-05-31 00:00:00
openvas
openvas
CentOS Update for bind97 CESA-2011:0845 centos5 i386
2011-08-09 00:00:00
RedHat Update for bind RHSA-2011:0845-01
2011-06-06 00:00:00
ISC BIND DoS Vulnerability (CVE-2011-1910) - Windows
2022-10-13 00:00:00
slackware
slackware
[slackware-security] bind
2011-05-28 01:14:25
[slackware-security] bind
2011-08-13 00:34:14
debiancve
debiancve
CVE-2011-1910
2011-05-31 20:55:02
prion
prion
Design/Logic Flaw
2011-05-31 20:55:00
centos
centos
bind97 security update
2011-05-31 17:03:46
nessus
nessus
RHEL 5 / 6 : bind (RHSA-2011:0845)
2011-06-01 00:00:00
FreeBSD : BIND -- Large RRSIG RRsets and Negative Caching DoS (1e1421f0-8d6f-11e0-89b4-001ec9578670)
2011-06-07 00:00:00
Fedora 13 : bind-9.7.3-2.P1.fc13 (2011-7621)
2011-06-12 00:00:00
osv
osv
bind9 - wrong boundary condition
2011-05-27 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-11:02.bind
2011-05-28 00:00:00
securityvulns
securityvulns
FreeBSD Security Advisory FreeBSD-SA-11:02.bind
2011-05-30 00:00:00
ISC bind named DNS server DoS
2011-05-30 00:00:00
Apple OS X multiple security vulnerabilities
2011-10-24 00:00:00
f5
f5
SOL12985 - BIND vulnerability CVE-2011-1910
2011-07-26 00:00:00
K12985 : BIND vulnerability CVE-2011-1910
2013-09-11 00:00:00
debian
debian
[SECURITY] [DSA 2244-1] bind9 security update
2011-05-27 22:23:27
cve
cve
CVE-2011-1910
2011-05-31 20:55:02
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:03:14
ubuntucve
ubuntucve
CVE-2011-1910
2011-05-30 00:00:00
oraclelinux
oraclelinux
bind security update
2011-05-31 00:00:00
bind security update
2011-11-17 00:00:00
nvd
nvd
CVE-2011-1910
2011-05-31 20:55:02
fedora
fedora
[SECURITY] Fedora 14 Update: bind-9.7.4-0.2.b1.fc14
2011-06-11 04:31:03
[SECURITY] Fedora 15 Update: bind-9.8.0-5.P2.fc15
2011-06-02 19:04:32
[SECURITY] Fedora 14 Update: bind-9.7.4-0.3.b1.fc14
2011-07-22 19:32:09
cisa
cisa
Internet System Consortium releases BIND patches
2011-05-27 00:00:00
checkpoint_advisories
checkpoint_advisories
ISC BIND RRSIG RRsets Denial of Service (CVE-2011-1910)
2011-07-15 00:00:00
freebsd
freebsd
BIND -- Large RRSIG RRsets and Negative Caching DoS
2011-05-26 00:00:00
cvelist
cvelist
CVE-2011-1910
2011-05-31 20:00:00
cert
cert
ISC BIND named negative caching vulnerability
2011-05-27 00:00:00
suse
suse
bind (important)
2011-06-10 15:31:38
ubuntu
ubuntu
Bind vulnerabilities
2011-05-30 00:00:00
gentoo
gentoo
BIND: Multiple vulnerabilities
2012-06-02 00:00:00

EPSS

0.943

Percentile

99.2%

JSON
Related for SSV:20595
redhat1openvas44slackware2debiancve1prion1centos1nessus25osv1freebsd_advisory1securityvulns4f52debian1cve1veracode1ubuntucve1oraclelinux2nvd1fedora8cisa1checkpoint_advisories1freebsd1cvelist1cert1suse1ubuntu1gentoo1