Vulnerability Name:

CVE-2002-1220 (CCN-10332)

Assigned:2002-11-12
Published:2002-11-12
Updated:2018-05-03
Summary:BIND 8.3.x through 8.3.3 allows remote attackers to cause a denial of service (termination due to assertion failure) via a request for a subdomain that does not exist, with an OPT resource record with a large UDP payload size.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Denial of Service
References:Source: CCN
Type: FreeBSD Security Advisory FreeBSD-SA-02:43.bind
multiple vulnerabilities in BIND [REVISED]

Source: CCN
Type: Full-Disclosure Mailing List, Tue Nov 19 2002 - 11:23:26 CST
named(8) multiple denial of service and remote execution of code

Source: CCN
Type: SCO Security Advisory CSSA-2003-SCO.2
UnixWare 7.1.1 : multiple vulnerabilities in BIND (CERT CA-2002-31)

Source: CCN
Type: Hewlett-Packard Software Security Response Team SSRT2408
Potential BIND Security Vulnerabilities

Source: CCN
Type: Internet Security Systems Security Advisory, November 12, 2002
Multiple Remote Vulnerabilities in BIND4 and BIND8

Source: ISS
Type: Patch, Vendor Advisory
20021112 Multiple Remote Vulnerabilities in BIND4 and BIND8

Source: MITRE
Type: CNA
CVE-2002-1220

Source: APPLE
Type: UNKNOWN
2002-11-21

Source: BUGTRAQ
Type: UNKNOWN
20021112 [Fwd: Notice of serious vulnerabilities in ISC BIND 4 & 8]

Source: BUGTRAQ
Type: UNKNOWN
20021118 TSLSA-2002-0076 - bind

Source: CCN
Type: BugTraq Mailing List, 2002-11-12 19:27:53
[Fwd: Notice of serious vulnerabilities in ISC BIND 4 & 8]

Source: COMPAQ
Type: UNKNOWN
SSRT2408

Source: BUGTRAQ
Type: UNKNOWN
20021115 [OpenPKG-SA-2002.011] OpenPKG Security Advisory (bind, bind8)

Source: CCN
Type: CERT Advisory CA-2002-31
Multiple Vulnerabilities in BIND

Source: CERT
Type: US Government Resource
CA-2002-31

Source: CCN
Type: CIAC Information Bulletin N-013
ISC Remote Vulnerabilities in BIND4 and BIND8

Source: CIAC
Type: UNKNOWN
N-013

Source: DEBIAN
Type: UNKNOWN
DSA-196

Source: DEBIAN
Type: DSA-196
bind -- several vulnerabilities

Source: CCN
Type: Internet Software Consortium (ISC) Web site
Internet Software Consortium - BIND

Source: CONFIRM
Type: Patch, Vendor Advisory
http://www.isc.org/products/BIND/bind-security.html

Source: CCN
Type: US-CERT VU#229595
Overly large OPT record assertion

Source: CERT-VN
Type: US Government Resource
VU#229595

Source: MANDRAKE
Type: UNKNOWN
MDKSA-2002:077

Source: CCN
Type: EnGarde Secure Linux Security Advisory ESA-20021114-029
buffer overflow, DoS attacks

Source: CCN
Type: SCO Security Advisory CSSA-2002-059.0
Linux: multiple vulnerabilities in BIND (CERT CA-2002-31)

Source: CCN
Type: SCO Security Advisory CSSA-2003-SCO.17.1
OpenServer 5.0.7 OpenServer 5.0.6 OpenServer 5.0.5 : Multiple Remote Vulnerabilities in BIND

Source: CCN
Type: National Infrastructure Protection Center Advisory 02-009
"Multiple Vulnerabilities in ISC BIND versions 4 and 8"

Source: CCN
Type: OpenPKG-SA-2002.011
BIND

Source: CCN
Type: OSVDB ID: 9724
ISC BIND OPT Resource Record Large UDP Payload DoS

Source: BID
Type: UNKNOWN
6161

Source: CCN
Type: BID-6161
ISC BIND OPT Record Large UDP Denial of Service Vulnerability

Source: CCN
Type: Trustix Secure Linux Security Advisory #2002-0076
Remote exploit

Source: XF
Type: UNKNOWN
bind-opt-rr-dos(10332)

Source: XF
Type: UNKNOWN
bind-opt-rr-dos(10332)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:449

Source: SUSE
Type: SUSE-SA:2002:044
bind8: remote command execution

Vulnerable Configuration:Configuration 1:
  • cpe:/a:isc:bind:8.3.0:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:8.3.1:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:8.3.2:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:8.3.3:*:*:*:-:*:*:*

    • Configuration 2:
  • cpe:/o:freebsd:freebsd:4.4:-:*:*:*:*:*:*
  • OR cpe:/o:freebsd:freebsd:4.5:-:*:*:*:*:*:*
  • OR cpe:/o:freebsd:freebsd:4.6:-:*:*:*:*:*:*
  • OR cpe:/o:freebsd:freebsd:4.7:-:*:*:*:*:*:*
  • OR cpe:/o:openbsd:openbsd:3.0:*:*:*:*:*:*:*
  • OR cpe:/o:openbsd:openbsd:3.1:*:*:*:*:*:*:*
  • OR cpe:/o:openbsd:openbsd:3.2:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:hp:hp-ux:10.20:*:*:*:*:*:*:*
  • OR cpe:/a:isc:bind:8.2:-:*:*:*:*:*:*
  • OR cpe:/a:isc:bind:8.2.1:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:8.1:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:8.1.1:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:8.1.2:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:8.2.2:-:*:*:*:*:*:*
  • OR cpe:/a:isc:bind:8.3.3:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:8.3.2:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:8.3.1:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:8.3.0:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:8.2.6:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:8.2.5:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:8.2.4:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:8.2.3:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:8.2.2:p7:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:8.2.2:p5:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:8.2.2:p3:*:*:-:*:*:*
  • AND
  • cpe:/o:freebsd:freebsd:*:*:*:*:*:*:*:*
  • OR cpe:/o:sun:sunos:5.6:*:*:*:*:*:*:*
  • OR cpe:/o:sun:solaris:8.0:beta:*:*:*:*:*:*
  • OR cpe:/o:ibm:aix:4:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:11:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:2.2:*:*:*:*:*:*:*
  • OR cpe:/o:trustix:secure_linux:1.1:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:netbsd:netbsd:1.5:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:7.0:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:7.1:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7.1:*:*:*:*:*:*:*
  • OR cpe:/o:trustix:secure_linux:1.2:*:*:*:*:*:*:*
  • OR cpe:/a:mandrakesoft:mandrake_single_network_firewall:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:trustix:secure_linux:1.5:*:*:*:*:*:*:*
  • OR cpe:/o:netbsd:netbsd:1.5.1:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:7.3:*:*:*:*:*:*:*
  • OR cpe:/o:netbsd:netbsd:1.5.2:*:*:*:*:*:*:*
  • OR cpe:/o:engardelinux:secure_linux:-:*:*:*:*:*:*:*
  • OR cpe:/a:suse:suse_linux_database_server:*:*:*:*:*:*:*:*
  • OR cpe:/a:suse:suse_email_server:iii:*:*:*:*:*:*:*
  • OR cpe:/a:suse:suse_linux_connectivity_server:*:*:*:*:*:*:*:*
  • OR cpe:/a:openpkg:openpkg:1.0:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:8.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7.3:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:3.0:*:*:*:*:*:*:*
  • OR cpe:/o:engardelinux:secure_professional:-:*:*:*:*:*:*:*
  • OR cpe:/a:suse:suse_linux_office_server:*:*:*:*:*:*:*:*
  • OR cpe:/o:netbsd:netbsd:1.5.3:*:*:*:*:*:*:*
  • OR cpe:/o:netbsd:netbsd:1.6:*:*:*:*:*:*:*
  • OR cpe:/a:openpkg:openpkg:1.1:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:8.1:*:*:*:*:*:*:*
  • OR cpe:/o:netbsd:netbsd:current:*:*:*:*:*:*:*
  • OR cpe:/o:sun:sunos:5.7:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:449
    V
    		Bind OPT Resource Record DoS Vulnerability
    2005-03-09
    oval:org.debian:def:196
    V
    		several vulnerabilities
    2002-11-14
    BACK
    isc bind 8.3.0
    isc bind 8.3.1
    isc bind 8.3.2
    isc bind 8.3.3
    freebsd freebsd 4.4
    freebsd freebsd 4.5
    freebsd freebsd 4.6
    freebsd freebsd 4.7
    openbsd openbsd 3.0
    openbsd openbsd 3.1
    openbsd openbsd 3.2
    hp hp-ux 10.20
    isc bind 8.2
    isc bind 8.2.1
    isc bind 8.1
    isc bind 8.1.1
    isc bind 8.1.2
    isc bind 8.2.2
    isc bind 8.3.3
    isc bind 8.3.2
    isc bind 8.3.1
    isc bind 8.3.0
    isc bind 8.2.6
    isc bind 8.2.5
    isc bind 8.2.4
    isc bind 8.2.3
    isc bind 8.2.2 p7
    isc bind 8.2.2 p5
    isc bind 8.2.2 p3
    freebsd freebsd *
    sun solaris 2.6
    sun solaris 8.0 beta
    ibm aix 4
    hp hp-ux 11
    debian debian linux 2.2
    trustix secure linux 1.1
    redhat linux 7
    mandrakesoft mandrake linux 7.2
    netbsd netbsd 1.5
    suse suse linux 7.0
    suse suse linux 7.1
    redhat linux 7.1
    trustix secure linux 1.2
    mandrakesoft mandrake single network firewall 7.2
    suse suse linux 7.2
    trustix secure linux 1.5
    netbsd netbsd 1.5.1
    redhat linux 7.2
    suse suse linux 7.3
    netbsd netbsd 1.5.2
    engardelinux secure linux -
    suse suse linux database server *
    suse suse email server iii
    suse suse linux connectivity server *
    openpkg openpkg 1.0
    suse suse linux 8.0
    redhat linux 7.3
    debian debian linux 3.0
    engardelinux secure professional -
    suse suse linux office server *
    netbsd netbsd 1.5.3
    netbsd netbsd 1.6
    openpkg openpkg 1.1
    suse suse linux 8.1
    netbsd netbsd current
    sun solaris 7.0