Filtered by vendor Isc
Subscriptions
Total
221 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2010-3615 | 1 Isc | 1 Bind | 2016-04-04 | N/A |
named in ISC BIND 9.7.2-P2 does not check all intended locations for allow-query ACLs, which might allow remote attackers to make successful requests for private DNS records via the standard DNS query mechanism. | ||||
CVE-2012-3868 | 1 Isc | 1 Bind | 2013-11-25 | N/A |
Race condition in the ns_client structure management in ISC BIND 9.9.x before 9.9.1-P2 allows remote attackers to cause a denial of service (memory consumption or process exit) via a large volume of TCP queries. | ||||
CVE-2012-3523 | 1 Isc | 1 Inn | 2013-02-22 | N/A |
The STARTTLS implementation in nnrpd in INN before 2.5.3 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" attack, a similar issue to CVE-2011-0411. | ||||
CVE-2006-3122 | 1 Isc | 1 Dhcpd | 2011-06-13 | N/A |
The supersede_lease function in memory.c in ISC DHCP (dhcpd) server 2.0pl5 allows remote attackers to cause a denial of service (application crash) via a DHCPDISCOVER packet with a 32 byte client-identifier, which causes the packet to be interpreted as a corrupt uid and causes the server to exit with "corrupt lease uid." | ||||
CVE-2010-3616 | 1 Isc | 1 Dhcp | 2011-01-19 | N/A |
ISC DHCP server 4.2 before 4.2.0-P2, when configured to use failover partnerships, allows remote attackers to cause a denial of service (communications-interrupted state and DHCP client service loss) by connecting to a port that is only intended for a failover peer, as demonstrated by a Nagios check_tcp process check to TCP port 520. | ||||
CVE-2002-0400 | 1 Isc | 1 Bind | 2008-09-10 | N/A |
ISC BIND 9 before 9.2.1 allows remote attackers to cause a denial of service (shutdown) via a malformed DNS packet that triggers an error condition that is not properly handled when the rdataset parameter to the dns_message_findtype() function in message.c is not NULL, aka DoS_findtype. | ||||
CVE-2002-0029 | 2 Astaro, Isc | 2 Security Linux, Bind | 2008-09-10 | N/A |
Buffer overflows in the DNS stub resolver library in ISC BIND 4.9.2 through 4.9.10, and other derived libraries such as BSD libc and GNU glibc, allow remote attackers to execute arbitrary code via DNS server responses that trigger the overflow in the (1) getnetbyname, or (2) getnetbyaddr functions, aka "LIBRESOLV: buffer overrun" and a different vulnerability than CVE-2002-0684. | ||||
CVE-2001-0013 | 1 Isc | 1 Bind | 2008-09-10 | N/A |
Format string vulnerability in nslookupComplain function in BIND 4 allows remote attackers to gain root privileges. | ||||
CVE-2001-0012 | 1 Isc | 1 Bind | 2008-09-10 | N/A |
BIND 4 and BIND 8 allow remote attackers to access sensitive information such as environment variables. | ||||
CVE-2001-0011 | 1 Isc | 1 Bind | 2008-09-10 | N/A |
Buffer overflow in nslookupComplain function in BIND 4 allows remote attackers to gain root privileges. | ||||
CVE-2001-0010 | 1 Isc | 1 Bind | 2008-09-10 | N/A |
Buffer overflow in transaction signature (TSIG) handling code in BIND 8 allows remote attackers to gain root privileges. | ||||
CVE-2000-0360 | 1 Isc | 1 Inn | 2008-09-10 | N/A |
Buffer overflow in INN 2.2.1 and earlier allows remote attackers to cause a denial of service via a maliciously formatted article. | ||||
CVE-2000-0335 | 2 Gnu, Isc | 2 Glibc, Bind | 2008-09-10 | N/A |
The resolver in glibc 2.1.3 uses predictable IDs, which allows a local attacker to spoof DNS query results. | ||||
CVE-1999-0849 | 1 Isc | 1 Bind | 2008-09-09 | N/A |
Denial of service in BIND named via maxdname. | ||||
CVE-1999-0785 | 1 Isc | 1 Inn | 2008-09-09 | N/A |
The INN inndstart program allows local users to gain root privileges via the "pathrun" parameter in the inn.conf file. | ||||
CVE-1999-0754 | 1 Isc | 1 Inn | 2008-09-09 | N/A |
The INN inndstart program allows local users to gain privileges by specifying an alternate configuration file using the INNCONF environmental variable. | ||||
CVE-1999-0706 | 2 Isc, Redhat | 2 Inn, Linux | 2008-09-09 | N/A |
Linux xmonisdn package allows local users to gain root privileges by modifying the IFS or PATH environmental variables. | ||||
CVE-1999-0705 | 2 Isc, Redhat | 2 Inn, Linux | 2008-09-09 | N/A |
Buffer overflow in INN inews program. | ||||
CVE-1999-0247 | 1 Isc | 1 Inn | 2008-09-09 | N/A |
Buffer overflow in nnrpd program in INN up to version 1.6 allows remote users to execute arbitrary commands. | ||||
CVE-2002-0525 | 1 Isc | 1 Inn | 2008-09-05 | N/A |
Format string vulnerabilities in (1) inews or (2) rnews for INN 2.2.3 and earlier allow local users and remote malicious NNTP servers to gain privileges via format string specifiers in NTTP responses. |