7.8

CVE-2007-0493

Use-after-free vulnerability in ISC BIND 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 (Bind Forum only) allows remote attackers to cause a denial of service (named daemon crash) via unspecified vectors that cause named to "dereference a freed fetch context."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IscBind Version9.3.0
IscBind Version9.3.1
IscBind Version9.3.2
IscBind Version9.4.0
IscBind Version9.4.0 Updaterc1
IscBind Version9.5.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 12.08% 0.956
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:N/I:N/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.isc.org/index.pl?/sw/bind/bind-security.php
http://docs.info.apple.com/article.html?artnum=305530
http://lists.apple.com/archives/security-announce/2007/May/msg00004.html
http://secunia.com/advisories/25402
http://www.vupen.com/english/advisories/2007/1939
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01070495
http://secunia.com/advisories/24930
http://secunia.com/advisories/24950
http://secunia.com/advisories/25649
http://www.vupen.com/english/advisories/2007/1401
http://www.vupen.com/english/advisories/2007/2163
http://www.vupen.com/english/advisories/2007/2315
https://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00967144
http://secunia.com/advisories/24054
http://www.trustix.org/errata/2007/0005
http://fedoranews.org/cms/node/2507
http://fedoranews.org/cms/node/2537
http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2007-003.txt.asc
http://lists.grok.org.uk/pipermail/full-disclosure/2007-January/052018.html
http://lists.suse.com/archive/suse-security-announce/2007-Jan/0016.html
http://marc.info/?l=bind-announce&m=116968519321296&w=2
http://secunia.com/advisories/23904
Vendor Advisory
http://secunia.com/advisories/23924
http://secunia.com/advisories/23943
http://secunia.com/advisories/23972
http://secunia.com/advisories/23974
http://secunia.com/advisories/23977
http://secunia.com/advisories/24014
http://secunia.com/advisories/24048
http://secunia.com/advisories/24129
http://secunia.com/advisories/24203
http://security.freebsd.org/advisories/FreeBSD-SA-07:02.bind.asc
http://security.gentoo.org/glsa/glsa-200702-06.xml
http://securitytracker.com/id?1017561
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.494157
http://www.isc.org/index.pl?/sw/bind/view/?release=9.2.8
Patch
http://www.isc.org/index.pl?/sw/bind/view/?release=9.3.4
Patch
http://www.mandriva.com/security/advisories?name=MDKSA-2007:030
http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.007.html
http://www.redhat.com/support/errata/RHSA-2007-0057.html
http://www.securityfocus.com/archive/1/458066/100/0/threaded
http://www.securityfocus.com/bid/22229
http://www.ubuntu.com/usn/usn-418-1
http://www.vupen.com/english/advisories/2007/0349
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04952488
https://issues.rpath.com/browse/RPL-989
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9614