Back to search
CVE-2002-1221
Published: Sep 1, 2004
Modified: Aug 8, 2024
PUBLISHED
Description
BIND 8.x through 8.3.3 allows remote attackers to cause a denial of service (crash) via SIG RR elements with invalid expiry times, which are removed from the internal BIND database and later cause a null dereference.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
CA-2002-31
third-party-advisory
x_refsource_CERT
http://www.isc.org/products/BIND/bind-security.html
x_refsource_CONFIRM
2002-11-21
vendor-advisory
x_refsource_APPLE
6159
vdb-entry
x_refsource_BID
DSA-196
vendor-advisory
x_refsource_DEBIAN
bind-null-dereference-dos(10333)
vdb-entry
x_refsource_XF
SSRT2408
vendor-advisory
x_refsource_COMPAQ
20021118 TSLSA-2002-0076 - bind
mailing-list
x_refsource_BUGTRAQ
CLA-2002:546
vendor-advisory
x_refsource_CONECTIVA
oval:org.mitre.oval:def:2094
vdb-entry
signature
x_refsource_OVAL
20021115 [OpenPKG-SA-2002.011] OpenPKG Security Advisory (bind, bind8)
mailing-list
x_refsource_BUGTRAQ
20021112 [Fwd: Notice of serious vulnerabilities in ISC BIND 4 & 8]
mailing-list
x_refsource_BUGTRAQ
N-013
third-party-advisory
government-resource
x_refsource_CIAC
VU#581682
third-party-advisory
x_refsource_CERT-VN
20021112 Multiple Remote Vulnerabilities in BIND4 and BIND8
third-party-advisory
x_refsource_ISS
MDKSA-2002:077
vendor-advisory
x_refsource_MANDRAKE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now