Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2008-0122

Опубликовано: 16 янв. 2008
Источник: nvd
CVSS2: 10
EPSS Низкий

Описание

Off-by-one error in the inet_network function in libbind in ISC BIND 9.4.2 and earlier, as used in libc in FreeBSD 6.2 through 7.0-PRERELEASE, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted input that triggers memory corruption.

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*
Версия до 9.4.2 (включая)

Одно из

cpe:2.3:o:freebsd:freebsd:6.2:-:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.2:p1:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.2:p10:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.2:p11:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.2:p12:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.2:p4:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.2:p5:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.2:p6:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.2:p7:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.2:p8:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.2:p9:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.2:rc1:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.2:rc2:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.3:-:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.3:p1:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.3:p10:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.3:p11:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.3:p12:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.3:p13:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.3:p14:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.3:p15:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.3:p2:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.3:p3:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.3:p4:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.3:p5:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.3:p6:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.3:p7:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.3:p8:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.3:p9:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.3:rc2:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.4:-:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.4:p1:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.4:p10:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.4:p11:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.4:p2:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.4:p3:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.4:p4:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.4:p5:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.4:p6:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.4:p7:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.4:p8:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:6.4:p9:*:*:*:*:*:*

EPSS

Процентиль: 83%
0.02108
Низкий

10 Critical

CVSS2

Дефекты

CWE-189

Связанные уязвимости

ubuntu
больше 17 лет назад

Off-by-one error in the inet_network function in libbind in ISC BIND 9.4.2 and earlier, as used in libc in FreeBSD 6.2 through 7.0-PRERELEASE, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted input that triggers memory corruption.

redhat
больше 17 лет назад

Off-by-one error in the inet_network function in libbind in ISC BIND 9.4.2 and earlier, as used in libc in FreeBSD 6.2 through 7.0-PRERELEASE, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted input that triggers memory corruption.

debian
больше 17 лет назад

Off-by-one error in the inet_network function in libbind in ISC BIND 9 ...

github
около 3 лет назад

Off-by-one error in the inet_network function in libbind in ISC BIND 9.4.2 and earlier, as used in libc in FreeBSD 6.2 through 7.0-PRERELEASE, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted input that triggers memory corruption.

oracle-oval
около 17 лет назад

ELSA-2008-0300: bind security, bug fix, and enhancement update (MODERATE)

EPSS

Процентиль: 83%
0.02108
Низкий

10 Critical

CVSS2

Дефекты

CWE-189