Filtered by vendor Isc
Subscriptions
Total
222 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2023-2829 | 2 Isc, Netapp | 12 Bind, Active Iq Unified Manager, H300s and 9 more | 2024-08-02 | 7.5 High |
A `named` instance configured to run as a DNSSEC-validating recursive resolver with the Aggressive Use of DNSSEC-Validated Cache (RFC 8198) option (`synth-from-dnssec`) enabled can be remotely terminated using a zone with a malformed NSEC record. This issue affects BIND 9 versions 9.16.8-S1 through 9.16.41-S1 and 9.18.11-S1 through 9.18.15-S1. | ||||
CVE-2023-2828 | 5 Debian, Fedoraproject, Isc and 2 more | 19 Debian Linux, Fedora, Bind and 16 more | 2024-08-02 | 7.5 High |
Every `named` instance configured to run as a recursive resolver maintains a cache database holding the responses to the queries it has recently sent to authoritative servers. The size limit for that cache database can be configured using the `max-cache-size` statement in the configuration file; it defaults to 90% of the total amount of memory available on the host. When the size of the cache reaches 7/8 of the configured limit, a cache-cleaning algorithm starts to remove expired and/or least-recently used RRsets from the cache, to keep memory use below the configured limit. It has been discovered that the effectiveness of the cache-cleaning algorithm used in `named` can be severely diminished by querying the resolver for specific RRsets in a certain order, effectively allowing the configured `max-cache-size` limit to be significantly exceeded. This issue affects BIND 9 versions 9.11.0 through 9.16.41, 9.18.0 through 9.18.15, 9.19.0 through 9.19.13, 9.11.3-S1 through 9.16.41-S1, and 9.18.11-S1 through 9.18.15-S1. | ||||
CVE-2024-28872 | 1 Isc | 1 Stork | 2024-08-02 | 8.9 High |
The TLS certificate validation code is flawed. An attacker can obtain a TLS certificate from the Stork server and use it to connect to the Stork agent. Once this connection is established with the valid certificate, the attacker can send malicious commands to a monitored service (Kea or BIND 9), possibly resulting in confidential data loss and/or denial of service. It should be noted that this vulnerability is not related to BIND 9 or Kea directly, and only customers using the Stork management tool are potentially affected. This issue affects Stork versions 0.15.0 through 1.15.0. | ||||
CVE-1999-0043 | 6 Bsdi, Caldera, Isc and 3 more | 7 Bsd Os, Openlinux, Inn and 4 more | 2024-08-01 | 9.8 Critical |
Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others. | ||||
CVE-1999-1499 | 1 Isc | 1 Bind | 2024-08-01 | N/A |
named in ISC BIND 4.9 and 8.1 allows local users to destroy files via a symlink attack on (1) named_dump.db when root kills the process with a SIGINT, or (2) named.stats when SIGIOT is used. | ||||
CVE-1999-0868 | 5 Isc, Nec, Netscape and 2 more | 6 Inn, Goah Intrasv, Goah Networksv and 3 more | 2024-08-01 | N/A |
ucbmail allows remote attackers to execute commands via shell metacharacters that are passed to it from INN. | ||||
CVE-1999-0837 | 2 Isc, Sun | 3 Bind, Solaris, Sunos | 2024-08-01 | N/A |
Denial of service in BIND by improperly closing TCP sessions via so_linger. | ||||
CVE-1999-0848 | 2 Isc, Sun | 3 Bind, Solaris, Sunos | 2024-08-01 | N/A |
Denial of service in BIND named via consuming more than "fdmax" file descriptors. | ||||
CVE-1999-0833 | 2 Isc, Sun | 3 Bind, Solaris, Sunos | 2024-08-01 | N/A |
Buffer overflow in BIND 8.2 via NXT records. | ||||
CVE-1999-0849 | 1 Isc | 1 Bind | 2024-08-01 | N/A |
Denial of service in BIND named via maxdname. | ||||
CVE-1999-0808 | 1 Isc | 1 Dhcp Client | 2024-08-01 | N/A |
Multiple buffer overflows in ISC DHCP Distribution server (dhcpd) 1.0 and 2.0 allow a remote attacker to cause a denial of service (crash) and possibly execute arbitrary commands via long options. | ||||
CVE-1999-0705 | 2 Isc, Redhat | 2 Inn, Linux | 2024-08-01 | N/A |
Buffer overflow in INN inews program. | ||||
CVE-1999-0754 | 1 Isc | 1 Inn | 2024-08-01 | N/A |
The INN inndstart program allows local users to gain privileges by specifying an alternate configuration file using the INNCONF environmental variable. | ||||
CVE-1999-0785 | 1 Isc | 1 Inn | 2024-08-01 | N/A |
The INN inndstart program allows local users to gain root privileges via the "pathrun" parameter in the inn.conf file. | ||||
CVE-1999-0706 | 2 Isc, Redhat | 2 Inn, Linux | 2024-08-01 | N/A |
Linux xmonisdn package allows local users to gain root privileges by modifying the IFS or PATH environmental variables. | ||||
CVE-1999-0247 | 1 Isc | 1 Inn | 2024-08-01 | N/A |
Buffer overflow in nnrpd program in INN up to version 1.6 allows remote users to execute arbitrary commands. | ||||
CVE-1999-0184 | 1 Isc | 1 Bind | 2024-08-01 | N/A |
When compiled with the -DALLOW_UPDATES option, bind allows dynamic updates to the DNS server, allowing for malicious modification of DNS records. | ||||
CVE-1999-0100 | 1 Isc | 1 Inn | 2024-08-01 | N/A |
Remote access in AIX innd 1.5.1, using control messages. | ||||
CVE-1999-0009 | 11 Bsdi, Caldera, Data General and 8 more | 13 Bsd Os, Openlinux, Dg Ux and 10 more | 2024-08-01 | N/A |
Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases. | ||||
CVE-1999-0024 | 6 Bsdi, Ibm, Isc and 3 more | 12 Bsd Os, Aix, Bind and 9 more | 2024-08-01 | N/A |
DNS cache poisoning via BIND, by predictable query IDs. |