National Vulnerability Database (NVD) National Vulnerability Database (CVE-2009-0025)

National Cyber-Alert System

Vulnerability Summary for CVE-2009-0025

Original release date:01/07/2009

Last revised:05/16/2009

Source: US-CERT/NIST

Overview

BIND 9.6.0, 9.5.1, 9.5.0, 9.4.3, and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.

Impact

CVSS Severity (version 2.0):

CVSS v2 Base Score:5.0 (MEDIUM) (AV:N/AC:L/Au:N/C:P/I:N/A:N) (legend)

Impact Subscore: 2.9

Exploitability Subscore: 10.0

CVSS Version 2 Metrics:

Access Vector: Network exploitable

Access Complexity: Low

Authentication: Not required to exploit

Impact Type:Allows unauthorized disclosure of information

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

US-CERT Technical Alert: TA09-133A

Name: TA09-133A

Hyperlink:http://www.us-cert.gov/cas/techalerts/TA09-133A.html

External Source: FEDORA

Name: FEDORA-2009-0350

Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-January/msg00393.html

External Source: CONFIRM

Name: https://www.isc.org/node/373

Hyperlink:https://www.isc.org/node/373

External Source: CONFIRM

Name: https://issues.rpath.com/browse/RPL-2938

Hyperlink:https://issues.rpath.com/browse/RPL-2938

External Source: VUPEN

Name: ADV-2009-1297

Hyperlink:http://www.vupen.com/english/advisories/2009/1297

External Source: VUPEN

Name: ADV-2009-0904

Hyperlink:http://www.vupen.com/english/advisories/2009/0904

External Source: CONFIRM

Name: http://www.vmware.com/security/advisories/VMSA-2009-0004.html

Hyperlink:http://www.vmware.com/security/advisories/VMSA-2009-0004.html

External Source: BUGTRAQ

Name: 20090401 VMSA-2009-0004 ESX Service Console updates for openssl, bind, and vim

Hyperlink:http://www.securityfocus.com/archive/1/archive/1/502322/100/0/threaded

External Source: BUGTRAQ

Name: 20090120 rPSA-2009-0009-1 bind bind-utils

Hyperlink:http://www.securityfocus.com/archive/1/archive/1/500207/100/0/threaded

External Source: CONFIRM

Name: http://www.openbsd.org/errata44.html#008_bind

Hyperlink:http://www.openbsd.org/errata44.html#008_bind

External Source: MISC

Name: http://www.ocert.org/advisories/ocert-2008-016.html

Hyperlink:http://www.ocert.org/advisories/ocert-2008-016.html

External Source: VUPEN

Name: ADV-2009-0366

Hyperlink:http://www.frsirt.com/english/advisories/2009/0366

External Source: VUPEN

Name: ADV-2009-0043

Hyperlink:http://www.frsirt.com/english/advisories/2009/0043

External Source: CONFIRM

Name: http://wiki.rpath.com/Advisories:rPSA-2009-0009

Hyperlink:http://wiki.rpath.com/Advisories:rPSA-2009-0009

External Source: CONFIRM

Name: http://support.avaya.com/elmodocs2/security/ASA-2009-045.htm

Hyperlink:http://support.avaya.com/elmodocs2/security/ASA-2009-045.htm

External Source: CONFIRM

Name: http://support.apple.com/kb/HT3549

Hyperlink:http://support.apple.com/kb/HT3549

External Source: SUNALERT

Name: 250846

Hyperlink:http://sunsolve.sun.com/search/document.do?assetkey=1-26-250846-1

External Source: SLACKWARE

Name: SSA:2009-014-02

Hyperlink:http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.540362

External Source: FREEBSD

Name: FreeBSD-SA-09:04

Hyperlink:http://security.freebsd.org/advisories/FreeBSD-SA-09:04.bind.asc

External Source: SECUNIA

Name: 35074

Hyperlink:http://secunia.com/advisories/35074

External Source: SECUNIA

Name: 33882

Hyperlink:http://secunia.com/advisories/33882

External Source: SECUNIA

Name: 33683

Hyperlink:http://secunia.com/advisories/33683

External Source: SECUNIA

Name: 33559

Hyperlink:http://secunia.com/advisories/33559

External Source: SECUNIA

Name: 33551

Hyperlink:http://secunia.com/advisories/33551

External Source: SECUNIA

Name: 33546

Hyperlink:http://secunia.com/advisories/33546

External Source: SECUNIA

Name: 33494

Hyperlink:http://secunia.com/advisories/33494

External Source: APPLE

Name: APPLE-SA-2009-05-12

Hyperlink:http://lists.apple.com/archives/security-announce/2009/May/msg00002.html

External Source: MISC

Name: http://groups.google.com/group/comp.protocols.dns.bind/browse_thread/thread/49ef622c8329fd33

Hyperlink:http://groups.google.com/group/comp.protocols.dns.bind/browse_thread/thread/49ef622c8329fd33

Vulnerable software and versions

Configuration 1

* cpe:/a:isc:bind

* cpe:/a:isc:bind:4.9.2

* cpe:/a:isc:bind:4.9.10

* cpe:/a:isc:bind:4.9

* cpe:/a:isc:bind:4

* cpe:/a:isc:bind:4.9.5:p1

* cpe:/a:isc:bind:4.9.5

* cpe:/a:isc:bind:4.9.4

* cpe:/a:isc:bind:4.9.3

* cpe:/a:isc:bind:8.4.7

* cpe:/a:isc:bind:8.2.1

* cpe:/a:isc:bind:8.2.2

* cpe:/a:isc:bind:8.2

* cpe:/a:isc:bind:9.3.5-p2-w1:windows

* cpe:/a:isc:bind:8.2:p1

* cpe:/a:isc:bind:8.2.2:p3

* cpe:/a:isc:bind:8.2.2:p4

* cpe:/a:isc:bind:8.2.2:p1

* cpe:/a:isc:bind:8.2.2:p2

* cpe:/a:isc:bind:4.9.8

* cpe:/a:isc:bind:4.9.9

* cpe:/a:isc:bind:4.9.6

* cpe:/a:isc:bind:4.9.7

* cpe:/a:isc:bind:8.1.1

* cpe:/a:isc:bind:8.1.2

* cpe:/a:isc:bind:8

* cpe:/a:isc:bind:8.1

* cpe:/a:isc:bind:8.3.3

* cpe:/a:isc:bind:8.3.2

* cpe:/a:isc:bind:8.3.5

* cpe:/a:isc:bind:8.3.4

* cpe:/a:isc:bind:8.2.7

* cpe:/a:isc:bind:8.2.6

* cpe:/a:isc:bind:8.3.1

* cpe:/a:isc:bind:8.3.0

* cpe:/a:isc:bind:8.2.3_t9b

* cpe:/a:isc:bind:8.2.3_t1a

* cpe:/a:isc:bind:8.2.5

* cpe:/a:isc:bind:8.2.4

* cpe:/a:isc:bind:8.2.2:p6

* cpe:/a:isc:bind:8.2.2:p5

* cpe:/a:isc:bind:8.2.3

* cpe:/a:isc:bind:8.2.2:p7

* cpe:/a:isc:bind:9.2.0

* cpe:/a:isc:bind:9.2.1

* cpe:/a:isc:bind:9.2.2

* cpe:/a:isc:bind:9.2.2:p3

* cpe:/a:isc:bind:9.1.1

* cpe:/a:isc:bind:9.1.2

* cpe:/a:isc:bind:9.1.3

* cpe:/a:isc:bind:9.2

* cpe:/a:isc:bind:8.4.5

* cpe:/a:isc:bind:9.0

* cpe:/a:isc:bind:9.0.1

* cpe:/a:isc:bind:9.1

* cpe:/a:isc:bind:8.3.6

* cpe:/a:isc:bind:8.4

* cpe:/a:isc:bind:8.4.1

* cpe:/a:isc:bind:8.4.4

* cpe:/a:isc:bind:9.4.0a4

* cpe:/a:isc:bind:9.4.0a3

* cpe:/a:isc:bind:9.4.0a2

* cpe:/a:isc:bind:9.4.0a1

* cpe:/a:isc:bind:9.4.0

* cpe:/a:isc:bind:9.4

* cpe:/a:isc:bind:9.3.3

* cpe:/a:isc:bind:9.3.2

* cpe:/a:isc:bind:9.3.1

* cpe:/a:isc:bind:9.3.0

* cpe:/a:isc:bind:9.3

* cpe:/a:isc:bind:9.2.7

* cpe:/a:isc:bind:9.2.6

* cpe:/a:isc:bind:9.2.5

* cpe:/a:isc:bind:9.2.4

* cpe:/a:isc:bind:9.2.3

* cpe:/a:isc:bind:9.2.9

* cpe:/a:isc:bind:9.4.0:rc1

* cpe:/a:isc:bind:9.4.0b1

* cpe:/a:isc:bind:9.4.0a5

* cpe:/a:isc:bind:9.4.0a6

* cpe:/a:isc:bind:9.4.0b2

* cpe:/a:isc:bind:9.4.0b3

* cpe:/a:isc:bind:9.4.0b4

* cpe:/a:isc:bind:9.4.1

* cpe:/a:isc:bind:9.4.2

* cpe:/a:isc:bind:9.4.3 and previous versions

* Denotes Vulnerable Software

Technical Details

Vulnerability Type (View All)

Authentication Issues (CWE-287)

CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0025