NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2007-2241

Summary	Unspecified vulnerability in query.c in ISC BIND 9.4.0, and 9.5.0a1 through 9.5.0a3, when recursion is enabled, allows remote attackers to cause a denial of service (daemon exit) via a sequence of queries processed by the query_addsoa function.
Summary	Successful exploitation requires that "recursion" is enabled.
Publication Date	May 2, 2007, 7:19 p.m.
Registration Date	Jan. 29, 2021, 2:11 p.m.
Last Update	Oct. 31, 2018, 1:27 a.m.

CVSS2.0 : HIGH
Score	7.1
Vector	AV:N/AC:M/Au:N/C:N/I:N/A:C
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	中
攻撃前の認証要否(Au)	不要
機密性への影響(C)	なし
完全性への影響(I)	なし
可用性への影響(A)	高
Get all privileges.	いいえ
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:isc:bind:9.4.0:::::::*
cpe:2.3:a:isc:bind:9.5.0:::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	http://osvdb.org/34748	OSVDB
2	http://secunia.com/advisories/25070	SECUNIA	Vendor Advisory
3	http://www.isc.org/index.pl?/sw/bind/bind-security.php	CONFIRM
4	http://www.kb.cert.org/vuls/id/718460	CERT-VN	US Government Resource
5	http://www.mandriva.com/security/advisories?name=MDKSA-2007:100	MANDRIVA
6	http://www.securityfocus.com/bid/23738	BID
7	http://www.securitytracker.com/id?1017985	SECTRACK
8	http://www.vupen.com/english/advisories/2007/1593	VUPEN
9	https://exchange.xforce.ibmcloud.com/vulnerabilities/33988	XF

Common Vulnerabilities List