PT-2007-4224 · Isc+1 · Isc Bind+1

Published

2007-07-24

Updated

2024-06-15

CVE-2007-2925

CVSS v2.0

5.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions ISC BIND versions 9.4.0 through 9.4.1 ISC BIND versions 9.5.0a1 through 9.5.0a5

Description The issue is related to the default access control lists (ACL) settings in ISC BIND, which do not properly restrict recursive queries and cache access. This allows remote attackers to make recursive queries and query the cache.

Recommendations For ISC BIND versions 9.4.0 through 9.4.1, update the ACL settings to restrict recursive queries and cache access. For ISC BIND versions 9.5.0a1 through 9.5.0a5, update the ACL settings to restrict recursive queries and cache access.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-2925

OPENSUSE-SU-2024:10650-1

Affected Products

Bind Server

Isc Bind

PT-2007-4224 · Isc+1 · Isc Bind+1

CVE-2007-2925

Related Identifiers

Affected Products

References · 53