Back to search
CVE-2007-2925
Published: Jul 24, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
The default access control lists (ACL) in ISC BIND 9.4.0, 9.4.1, and 9.5.0a1 through 9.5.0a5 do not set the allow-recursion and allow-query-cache ACLs, which allows remote attackers to make recursive queries and query the cache.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
25076
vdb-entry
x_refsource_BID
ADV-2007-2914
vdb-entry
x_refsource_VUPEN
1018441
vdb-entry
x_refsource_SECTRACK
ADV-2007-2628
vdb-entry
x_refsource_VUPEN
26509
third-party-advisory
x_refsource_SECUNIA
MDKSA-2007:149
vendor-advisory
x_refsource_MANDRIVA
isc-bind-acl-security-bypass(35571)
vdb-entry
x_refsource_XF
GLSA-200708-13
vendor-advisory
x_refsource_GENTOO
http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=623903
x_refsource_CONFIRM
SSA:2007-207-01
vendor-advisory
x_refsource_SLACKWARE
http://www.isc.org/index.pl?/sw/bind/bind-security.php
x_refsource_CONFIRM
26227
third-party-advisory
x_refsource_SECUNIA
26515
third-party-advisory
x_refsource_SECUNIA
26236
third-party-advisory
x_refsource_SECUNIA
OpenPKG-SA-2007.022
vendor-advisory
x_refsource_OPENPKG
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now