7.5

CVE-2006-0527

BIND 4 (BIND4) and BIND 8 (BIND8), if used as a target forwarder, allows remote attackers to gain privileged access via a "Kashpureff-style DNS cache corruption" attack.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IscBind Version4
IscBind Version8
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 8% 0.94
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://attrition.org/pipermail/vim/2006-February/000551.html
http://computerworld.com/networkingtopics/networking/story/0%2C10801%2C103744%2C00.html
http://secunia.com/advisories/18690
Patch
Vendor Advisory
http://securityreason.com/securityalert/438
http://securityreason.com/securityalert/748
http://securitytracker.com/id?1015551
Patch
http://securitytracker.com/id?1015606
Patch
http://www.osvdb.org/22888
http://www.securityfocus.com/archive/1/425083/100/0/threaded
http://www.securityfocus.com/bid/16455
http://www.vupen.com/english/advisories/2006/0399
Vendor Advisory
http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00595837
https://exchange.xforce.ibmcloud.com/vulnerabilities/24414