Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-1349

Overview

Vulnerability Score 5.4 5.4
CVE Id CVE-2015-1349
Last Modified 18 Sep 2015 10:00:14
Published 18 Feb 2015 10:01:22
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2015-1349

Summary

named in ISC BIND 9.7.0 through 9.9.6 before 9.9.6-P2 and 9.10.x before 9.10.1-P2, when DNSSEC validation and the managed-keys feature are enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit, or daemon crash) by triggering an incorrect trust-anchor management scenario in which no key is ready for use.

Vulnerable Systems

Application

  • Isc Bind 9.10.0

  • Isc Bind 9.10.1

  • Isc Bind 9.10.2

  • Isc Bind 9.7.0

  • Isc Bind 9.7.0a1

  • Isc Bind 9.7.0a2

  • Isc Bind 9.7.0a3

  • Isc Bind 9.7.0b1

  • Isc Bind 9.7.0b2

  • Isc Bind 9.7.0b3

  • Isc Bind 9.7.1

  • Isc Bind 9.7.1b1

  • Isc Bind 9.7.2

  • Isc Bind 9.7.3

  • Isc Bind 9.7.4

  • Isc Bind 9.7.4b1

  • Isc Bind 9.7.5

  • Isc Bind 9.7.6

  • Isc Bind 9.7.7

  • Isc Bind 9.8.0

  • Isc Bind 9.8.1

  • Isc Bind 9.8.2

  • Isc Bind 9.8.3

  • Isc Bind 9.8.4

  • Isc Bind 9.8.5

  • Isc Bind 9.8.6

  • Isc Bind 9.9.0

  • Isc Bind 9.9.1

  • Isc Bind 9.9.2

  • Isc Bind 9.9.3

  • Isc Bind 9.9.4

  • Isc Bind 9.9.5

  • Isc Bind 9.9.6

  • Isc Bind 9.9.7


References

CONFIRM - https://kb.isc.org/article/AA-01235

UBUNTU - USN-2503-1

MANDRIVA - MDVSA-2015:054

CONFIRM - http://advisories.mageia.org/MGASA-2015-0082.html

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=1193820

FEDORA - FEDORA-2015-2548

FEDORA - FEDORA-2015-2543

REDHAT - RHSA-2015:0672

MANDRIVA - MDVSA-2015:165

CONFIRM - https://kc.mcafee.com/corporate/index?page=content&id=SB10116

HP - SSRT101976

SUSE - openSUSE-SU-2015:1326

CONFIRM - https://support.apple.com/HT205219

APPLE - APPLE-SA-2015-09-16-4

Related Patches

Novell SUSE 2015:10833 bind security update for SLES 11 SP3 i586

Novell SUSE 2015:10833 bind security update for SLES 11 SP3 x86_64

Novell SUSE 2015:10833 bind security update for SLE 11 SP3 i586

Novell SUSE 2015:10833 bind security update for SLE 11 SP3 x86_64


Last Updated: 27 May 2016 11:08:16