CVE-2010-0382

Name of the Vulnerable Software and Affected Versions ISC BIND versions 9.0.x through 9.3.x ISC BIND version 9.4 before 9.4.3-P5 ISC BIND version 9.5 before 9.5.2-P2 ISC BIND version 9.6 before 9.6.1-P3 ISC BIND version 9.7.0 beta

Description The issue allows remote attackers to have an unspecified impact via a crafted response. This is due to the handling of out-of-bailiwick data accompanying a secure response without re-fetching from the original source. Exploitation of the vulnerabilities can lead to disruption of confidentiality, integrity, and availability of protected information and can be carried out remotely.

Recommendations For ISC BIND versions 9.0.x through 9.3.x, update to a version outside of this range to mitigate the risk. For ISC BIND version 9.4 before 9.4.3-P5, update to version 9.4.3-P5 or later. For ISC BIND version 9.5 before 9.5.2-P2, update to version 9.5.2-P2 or later. For ISC BIND version 9.6 before 9.6.1-P3, update to version 9.6.1-P3 or later. For ISC BIND version 9.7.0 beta, avoid using this version until a stable release is available.