Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2012-1033
Description:The resolver in ISC BIND 9 through 9.8.1-P1 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.
Test IDs: 1.3.6.1.4.1.25623.1.0.123909   1.3.6.1.4.1.25623.1.0.123908   1.3.6.1.4.1.25623.1.0.807217  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2012-1033
BugTraq ID: 51898
http://www.securityfocus.com/bid/51898
CERT/CC vulnerability note: VU#542123
http://www.kb.cert.org/vuls/id/542123
HPdes Security Advisory: HPSBUX02835
http://marc.info/?l=bugtraq&m=135638082529878&w=2
HPdes Security Advisory: SSRT100763
http://marc.info/?l=bugtraq&m=135638082529878&w=2
http://osvdb.org/78916
RedHat Security Advisories: RHSA-2012:0717
http://rhn.redhat.com/errata/RHSA-2012-0717.html
http://www.securitytracker.com/id?1026647
http://secunia.com/advisories/47884
SuSE Security Announcement: openSUSE-SU-2012:0863 (Google Search)
https://hermes.opensuse.org/messages/15136456
SuSE Security Announcement: openSUSE-SU-2012:0864 (Google Search)
https://hermes.opensuse.org/messages/15136477
XForce ISS Database: isc-bind-update-sec-bypass(73053)
https://exchange.xforce.ibmcloud.com/vulnerabilities/73053




© 1998-2024 E-Soft Inc. All rights reserved.