Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-1667

Overview

Vulnerability Score 8.5 8.5
CVE Id CVE-2012-1667
Last Modified 24 Nov 2013 11:24:23
Published 05 Jun 2012 12:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-1667

Summary

ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1, 9.9.x before 9.9.1-P1, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P1 does not properly handle resource records with a zero-length RDATA section, which allows remote DNS servers to cause a denial of service (daemon crash or data corruption) or obtain sensitive information from process memory via a crafted record.

Vulnerable Systems

Application

  • Isc Bind 9.4-esv

  • Isc Bind 9.6-esv

  • Isc Bind 9.6-esv-r5

  • Isc Bind 9.6-esv-r6

  • Isc Bind 9.6-esv-r7

  • Isc Bind 9.7.4

  • Isc Bind 9.7.5

  • Isc Bind 9.7.6

  • Isc Bind 9.8.1

  • Isc Bind 9.8.2

  • Isc Bind 9.8.3

  • Isc Bind 9.9.0

  • Isc Bind 9.9.1


References

CONFIRM - https://kb.isc.org/article/AA-00698

CONFIRM - http://www.isc.org/software/bind/advisories/cve-2012-1667

HP - HPSBUX02795

HP - SSRT100878

CONFIRM - http://support.apple.com/kb/HT5501

APPLE - APPLE-SA-2012-09-19-2

REDHAT - RHSA-2012:1110

SECUNIA - 51096

MANDRIVA - MDVSA-2012:089

SLACKWARE - SSA:2012-341-01

Related Patches

Apple 2012-09-19 Mac OS X 10.8.2 Update

Apple 2012-09-19 Mac OS X Server 10.7.5 Update

Apple 2012-09-19 Mac OS X 10.8.2 Combo Update

Apple 2012-09-19 Mac OS X 10.7.5 Update

Apple 2012-09-19 Mac OS X Server 10.7.5 Combo Update

Apple 2012-09-19 Mac OS X 10.7.5 Combo Update

Apple 2012-09-19 OS X Mountain Lion Update v10.8.2 (Combo)

Apple 2012-09-19 OS X Mountain Lion Update v10.8.2

Red Hat 2012:0716-01 RHSA Important: bind security update for RHEL 5 x86

Red Hat 2012:0716-01 RHSA Important: bind security update for RHEL 5 x86_64

Red Hat 2012:0717-01 RHSA Important: bind97 security update for RHEL 5 x86

Red Hat 2012:0717-01 RHSA Important: bind97 security update for RHEL 5 x86_64

Novell SUSE 2012:6382 bind security update for SLE 11 SP2 i586

Novell SUSE 2012:6382 bind security update for SLE 11 SP2 x86_64

Novell SUSE 2012:6388 bind security update for SLE 11 SP1 i586

Novell SUSE 2012:6388 bind security update for SLE 11 SP1 x86_64

Novell SUSE 2012:8169 bind security update for SLE 10 SP4 i586

Novell SUSE 2012:8169 bind security update for SLE 10 SP4 x86_64


Last Updated: 27 May 2016 10:57:32