Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0527

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-0527
Last Modified 18 May 2011 12:00:00
Published 02 Feb 2006 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0527

Summary

BIND 4 (BIND4) and BIND 8 (BIND8), if used as a target forwarder, allows remote attackers to gain privileged access via a "Kashpureff-style DNS cache corruption" attack.

Vulnerable Systems

Application

  • Isc Bind 4

  • Isc Bind 8


References

HP - HPSBUX02097

SECTRACK - 1015606

SECTRACK - 1015551

SECUNIA - 18690

XF - tru64-dns-bind-unauth-access(24414)

HP - HPSBTU02095

HP - SSRT051007

VUPEN - ADV-2006-0399

BID - 16455

OSVDB - 22888

SREASON - 748

SREASON - 438

MISC - http://computerworld.com/networkingtopics/networking/story/0,10801,103744,00.html

VIM - 20060216 Recent HP advisories outline BIND problems

HP - SSRT051045


Last Updated: 27 May 2016 10:42:34