PT-2007-1953 · Isc+1 · Isc Bind+1
Published
2007-01-25
·
Updated
2023-02-13
·
CVE-2007-0493
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
ISC BIND versions 9.3.0 through 9.3.3
ISC BIND versions 9.4.0a1 through 9.4.0a6
ISC BIND versions 9.4.0b1 through 9.4.0b4
ISC BIND version 9.4.0rc1
ISC BIND version 9.5.0a1
Description
The issue allows remote attackers to cause a denial of service, resulting in the named daemon crashing. This occurs when unspecified vectors cause named to dereference a freed fetch context.
Recommendations
For ISC BIND versions 9.3.0 through 9.3.3, update to a version outside of this range to resolve the issue.
For ISC BIND versions 9.4.0a1 through 9.4.0a6, update to a version outside of this range to resolve the issue.
For ISC BIND versions 9.4.0b1 through 9.4.0b4, update to a version outside of this range to resolve the issue.
For ISC BIND version 9.4.0rc1, update to a version outside of this range to resolve the issue.
For ISC BIND version 9.5.0a1, update to a version outside of this range to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Isc Bind
Red Hat