CVE-2007-2925

EPSS 2.45%
Published 24.07.2007 17:30:00
Last modified 09.04.2025 00:30:58
Source cret@cert.org
Teams watchlist Login
Open Login

The default access control lists (ACL) in ISC BIND 9.4.0, 9.4.1, and 9.5.0a1 through 9.5.0a5 do not set the allow-recursion and allow-query-cache ACLs, which allows remote attackers to make recursive queries and query the cache.

Affected products Warnungen 0 Metrics 2 CWE 0 References 18

Data is provided by the National Vulnerability Database (NVD)

Isc ≫ Bind Version9.4.0

Isc ≫ Bind Version9.4.1

Isc ≫ Bind Version9.5.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	2.45%	0.846

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.8	8.6	4.9	AV:N/AC:M/Au:N/C:P/I:P/A:N

http://www.isc.org/index.pl?/sw/bind/bind-security.php

http://secunia.com/advisories/26227

http://secunia.com/advisories/26236

http://secunia.com/advisories/26509

http://secunia.com/advisories/26515

http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=623903

http://www.gentoo.org/security/en/glsa/glsa-200708-13.xml

http://www.mandriva.com/security/advisories?name=MDKSA-2007:149

http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.022.html

http://www.securityfocus.com/bid/25076

http://www.securitytracker.com/id?1018441

http://www.slackware.org/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.521385

http://www.vupen.com/english/advisories/2007/2628

http://www.vupen.com/english/advisories/2007/2914

https://exchange.xforce.ibmcloud.com/vulnerabilities/35571

https://nvd.nist.gov/vuln/detail/CVE-2007-2925

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-2925

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-2925

EUVD