| Revision Date: | 2013-04-29 | Version: | 12 | | Title: | Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P4, 9.5 before 9.5.2-P1, 9.6 before 9.6.1-P2, and 9.7 beta before 9.7.0b3, with DNSSEC validation enabled and checking disabled (CD), allows remote attackers to conduct DNS cache poisoning attacks by receiving a recursive client query and sending a response that contains an Additional section with crafted data, which is not properly handled when the response is processed "at the same time as requesting DNSSEC records (DO)," aka Bug 20438. | | Description: | Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P4, 9.5 before 9.5.2-P1, 9.6 before 9.6.1-P2, and 9.7 beta before 9.7.0b3, with DNSSEC validation enabled and checking disabled (CD), allows remote attackers to conduct DNS cache poisoning attacks by receiving a recursive client query and sending a response that contains an Additional section with crafted data, which is not properly handled when the response is processed "at the same time as requesting DNSSEC records (DO)," aka Bug 20438. | | Family: | unix | Class: | vulnerability | | Status: | ACCEPTED | Reference(s): | CVE-2009-4022
| | Platform(s): | CentOS Linux 5
Oracle Linux 5
Red Hat Enterprise Linux 5
| Product(s): | | | Definition Synopsis | | RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5
OR The operating system installed on the system is CentOS Linux 5.x
OR Oracle Linux 5.x
AND Configuration section
bind-utils is earlier than 30:9.3.6-4.P1.el5_4.1
OR bind-libbind-devel is earlier than 30:9.3.6-4.P1.el5_4.1
OR bind-devel is earlier than 30:9.3.6-4.P1.el5_4.1
OR bind-chroot is earlier than 30:9.3.6-4.P1.el5_4.1
OR caching-nameserver is earlier than 30:9.3.6-4.P1.el5_4.1
OR bind-sdb is earlier than 30:9.3.6-4.P1.el5_4.1
OR bind is earlier than 30:9.3.6-4.P1.el5_4.1
OR bind-libs is earlier than 30:9.3.6-4.P1.el5_4.1
|
|