CVE-2020-8625

EPSS 1.8%
Veröffentlicht 17.02.2021 23:15:13
Zuletzt bearbeitet 21.11.2024 05:39:09
Quelle security-officer@isc.org
Teams Watchlist Login
Unerledigt Login

BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting valid values for the tkey-gssapi-keytab or tkey-gssapi-credentialconfiguration options. Although the default configuration is not vulnerable, GSS-TSIG is frequently used in networks where BIND is integrated with Samba, as well as in mixed-server environments that combine BIND servers with Active Directory domain controllers. The most likely outcome of a successful exploitation of the vulnerability is a crash of the named process. However, remote code execution, while unproven, is theoretically possible. Affects: BIND 9.5.0 -> 9.11.27, 9.12.0 -> 9.16.11, and versions BIND 9.11.3-S1 -> 9.11.27-S1 and 9.16.8-S1 -> 9.16.11-S1 of BIND Supported Preview Edition. Also release versions 9.17.0 -> 9.17.1 of the BIND 9.17 development branch

Betroffene Produkte Warnungen 0 Metriken 4 CWE 1 Referenzen 14

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Isc ≫ Bind Version >= 9.5.0 <= 9.11.27

Isc ≫ Bind Version >= 9.12.0 <= 9.16.11

Isc ≫ Bind Version9.11.3 Updates1 SwEditionsupported_preview

Isc ≫ Bind Version9.11.5 Updates3 SwEditionsupported_preview

Isc ≫ Bind Version9.11.5 Updates5 SwEditionsupported_preview

Isc ≫ Bind Version9.11.6 Updates1 SwEditionsupported_preview

Isc ≫ Bind Version9.11.7 Updates1 SwEditionsupported_preview

Isc ≫ Bind Version9.11.8 Updates1 SwEditionsupported_preview

Isc ≫ Bind Version9.11.21 Updates1 SwEditionsupported_preview

Isc ≫ Bind Version9.11.27 Updates1 SwEditionsupported_preview

Isc ≫ Bind Version9.16.8 Updates1 SwEditionsupported_preview

Isc ≫ Bind Version9.16.11 Updates1 SwEditionsupported_preview

Isc ≫ Bind Version9.17.0

Isc ≫ Bind Version9.17.1

Debian ≫ Debian Linux Version9.0

Debian ≫ Debian Linux Version10.0

Fedoraproject ≫ Fedora Version32

Fedoraproject ≫ Fedora Version33

Fedoraproject ≫ Fedora Version34

Siemens ≫ Sinec Infrastructure Network Services Version < 1.0.1.1

Netapp ≫ Cloud Backup Version-

Netapp ≫ A250 Firmware Version-

Netapp ≫ A250 Version-

Netapp ≫ 500f Firmware Version-

Netapp ≫ 500f Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.8%	0.821

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8.1	2.2	5.9	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P
security-officer@isc.org	8.1	2.2	5.9	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf

Patch

Third Party Advisory

http://www.openwall.com/lists/oss-security/2021/02/19/1

Patch

Third Party Advisory

Mailing List

http://www.openwall.com/lists/oss-security/2021/02/20/2

Patch

Third Party Advisory

Mailing List

https://kb.isc.org/v1/docs/cve-2020-8625