National Vulnerability Database (NVD) National Vulnerability Database (CVE-2007-0493)

National Cyber-Alert System

Vulnerability Summary for CVE-2007-0493

Original release date:01/25/2007

Last revised:09/05/2008

Source: US-CERT/NIST

Overview

Use-after-free vulnerability in ISC BIND 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 (Bind Forum only) allows remote attackers to cause a denial of service (named daemon crash) via unspecified vectors that cause named to "dereference a freed fetch context."

Impact

CVSS Severity (version 2.0):

CVSS v2 Base Score:7.8 (HIGH) (AV:N/AC:L/Au:N/C:N/I:N/A:C) (legend)

Impact Subscore: 6.9

Exploitability Subscore: 10.0

CVSS Version 2 Metrics:

Access Vector: Network exploitable

Access Complexity: Low

Authentication: Not required to exploit

Impact Type:Allows disruption of serviceUnknown

Vendor Statments (disclaimer)

Official Statement from Red Hat (01/29/2007): Not vulnerable. This issue did not affect the versions of ISC BIND as shipped with Red Hat Enterprise Linux 2.1, 3, or 4.

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

External Source: CONFIRM

Name: http://www.isc.org/index.pl?/sw/bind/view/?release=9.3.4

Type: Patch Information

Hyperlink:http://www.isc.org/index.pl?/sw/bind/view/?release=9.3.4

External Source: CONFIRM

Name: http://www.isc.org/index.pl?/sw/bind/view/?release=9.2.8

Type: Patch Information

Hyperlink:http://www.isc.org/index.pl?/sw/bind/view/?release=9.2.8

External Source: VUPEN

Name: ADV-2007-0349

Type: Advisory; Patch Information

Hyperlink:http://www.frsirt.com/english/advisories/2007/0349

External Source: SECUNIA

Name: 23904

Type: Advisory

Hyperlink:http://secunia.com/advisories/23904

External Source: MLIST

Name: [bind-announce] 20070125 Internet Systems Consortium Security Advisory.

Hyperlink:http://marc.theaimsgroup.com/?l=bind-announce&m=116968519321296&w=2

External Source: FULLDISC

Name: 20070125 BIND remote exploit (low severity) [Fwd: Internet Systems Consortium Security Advisory.]

Hyperlink:http://lists.grok.org.uk/pipermail/full-disclosure/2007-January/052018.html

External Source: HP

Name: SSRT061239

Hyperlink:https://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00967144

External Source: CONFIRM

Name: https://issues.rpath.com/browse/RPL-989

Hyperlink:https://issues.rpath.com/browse/RPL-989

External Source: UBUNTU

Name: USN-418-1

Hyperlink:http://www.ubuntu.com/usn/usn-418-1

External Source: TRUSTIX

Name: 2007-0005

Hyperlink:http://www.trustix.org/errata/2007/0005

External Source: BID

Name: 22229

Hyperlink:http://www.securityfocus.com/bid/22229

External Source: BUGTRAQ

Name: 20070125 BIND remote exploit (low severity) [Fwd: Internet Systems Consortium Security Advisory.]

Hyperlink:http://www.securityfocus.com/archive/1/archive/1/458066/100/0/threaded

External Source: REDHAT

Name: RHSA-2007:0057

Hyperlink:http://www.redhat.com/support/errata/RHSA-2007-0057.html

External Source: OPENPKG

Name: OpenPKG-SA-2007.007

Hyperlink:http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.007.html

External Source: MANDRIVA

Name: MDKSA-2007:030

Hyperlink:http://www.mandriva.com/security/advisories?name=MDKSA-2007:030

External Source: CONFIRM

Name: http://www.isc.org/index.pl?/sw/bind/bind-security.php

Hyperlink:http://www.isc.org/index.pl?/sw/bind/bind-security.php

External Source: VUPEN

Name: ADV-2007-2315

Hyperlink:http://www.frsirt.com/english/advisories/2007/2315

External Source: VUPEN

Name: ADV-2007-2163

Hyperlink:http://www.frsirt.com/english/advisories/2007/2163

External Source: VUPEN

Name: ADV-2007-1939

Hyperlink:http://www.frsirt.com/english/advisories/2007/1939

External Source: VUPEN

Name: ADV-2007-1401

Hyperlink:http://www.frsirt.com/english/advisories/2007/1401

External Source: SLACKWARE

Name: SSA:2007-026-01

Hyperlink:http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.494157

External Source: SECTRACK

Name: 1017561

Hyperlink:http://securitytracker.com/id?1017561

External Source: GENTOO

Name: GLSA-200702-06

Hyperlink:http://security.gentoo.org/glsa/glsa-200702-06.xml

External Source: FREEBSD

Name: FreeBSD-SA-07:02

Hyperlink:http://security.freebsd.org/advisories/FreeBSD-SA-07:02.bind.asc

External Source: SECUNIA

Name: 25649

Hyperlink:http://secunia.com/advisories/25649

External Source: SECUNIA

Name: 25402

Hyperlink:http://secunia.com/advisories/25402

External Source: SECUNIA

Name: 24950

Hyperlink:http://secunia.com/advisories/24950

External Source: SECUNIA

Name: 24930

Hyperlink:http://secunia.com/advisories/24930

External Source: SECUNIA

Name: 24203

Hyperlink:http://secunia.com/advisories/24203

External Source: SECUNIA

Name: 24129

Hyperlink:http://secunia.com/advisories/24129

External Source: SECUNIA

Name: 24054

Hyperlink:http://secunia.com/advisories/24054

External Source: SECUNIA

Name: 24048

Hyperlink:http://secunia.com/advisories/24048

External Source: SECUNIA

Name: 24014

Hyperlink:http://secunia.com/advisories/24014

External Source: SECUNIA

Name: 23977

Hyperlink:http://secunia.com/advisories/23977

External Source: SECUNIA

Name: 23974

Hyperlink:http://secunia.com/advisories/23974

External Source: SECUNIA

Name: 23972

Hyperlink:http://secunia.com/advisories/23972

External Source: SECUNIA

Name: 23943

Hyperlink:http://secunia.com/advisories/23943

External Source: SECUNIA

Name: 23924

Hyperlink:http://secunia.com/advisories/23924

External Source: SUSE

Name: SUSE-SA:2007:014

Hyperlink:http://lists.suse.com/archive/suse-security-announce/2007-Jan/0016.html

External Source: APPLE

Name: APPLE-SA-2007-05-24

Hyperlink:http://lists.apple.com/archives/security-announce/2007/May/msg00004.html

External Source: HP

Name: SSRT061273

Hyperlink:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01070495

External Source: NETBSD

Name: NetBSD-SA2007-003

Hyperlink:http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2007-003.txt.asc

External Source: MANDRIVA

Name: MDKSA-2007:030

Hyperlink:http://frontal2.mandriva.com/security/advisories?name=MDKSA-2007:030

External Source: FEDORA

Name: FEDORA-2007-164

Hyperlink:http://fedoranews.org/cms/node/2537

External Source: FEDORA

Name: FEDORA-2007-147

Hyperlink:http://fedoranews.org/cms/node/2507

External Source: CONFIRM

Name: http://docs.info.apple.com/article.html?artnum=305530

Hyperlink:http://docs.info.apple.com/article.html?artnum=305530

Vulnerable software and versions

Configuration 1

* cpe:/a:isc:bind:9.3.0

* cpe:/a:isc:bind:9.3.1

* cpe:/a:isc:bind:9.3.2

* cpe:/a:isc:bind:9.4.0:rc1

* cpe:/a:isc:bind:9.4.0a1

* cpe:/a:isc:bind:9.4.0a2

* cpe:/a:isc:bind:9.4.0a3

* cpe:/a:isc:bind:9.4.0a4

* cpe:/a:isc:bind:9.4.0a5

* cpe:/a:isc:bind:9.4.0b1

* cpe:/a:isc:bind:9.4.0b2

* cpe:/a:isc:bind:9.4.0b3

* cpe:/a:isc:bind:9.5.0a1

* Denotes Vulnerable Software

Technical Details

Vulnerability Type (View All)

CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0493