ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| isc | bind | 8.2.4 |
| isc | bind | 8.3.1 |
| compaq | tru64 | 5.1b_pk2_bl22 |
| isc | bind | 8.3.0 |
| freebsd | freebsd | 4.7 |
| isc | bind | 8.2.3 |
| compaq | tru64 | 4.0f_pk6_bl17 |
| ibm | aix | 5.1l |
| compaq | tru64 | 4.0f_pk7_bl18 |
| isc | bind | 8.3.5 |
| isc | bind | 8.3.2 |
| freebsd | freebsd | 4.5 |
| compaq | tru64 | 4.0g_pk4_bl22 |
| netbsd | netbsd | 1.6 |
| freebsd | freebsd | 4.6.2 |
| compaq | tru64 | 4.0g_pk3_bl17 |
| isc | bind | 8.3.4 |
| sun | solaris | 7.0 |
| sun | solaris | 8.0 |
| netbsd | netbsd | current |
| sun | sunos | 5.7 |
| compaq | tru64 | 5.1a_pk3_bl3 |
| freebsd | freebsd | 4.9 |
| compaq | tru64 | 5.1a |
| compaq | tru64 | 5.1a_pk2_bl2 |
| isc | bind | 8.4.1 |
| freebsd | freebsd | 4.4 |
| compaq | tru64 | 5.1_pk4_bl18 |
| compaq | tru64 | 5.1_pk5_bl19 |
| nixu | namesurfer | standard_3.0.1 |
| compaq | tru64 | 5.1 |
| sun | solaris | 9.0 |
| isc | bind | 8.2.5 |
| isc | bind | 8.3.3 |
| freebsd | freebsd | 4.6 |
| netbsd | netbsd | 1.6.1 |
| isc | bind | 8.4 |
| compaq | tru64 | 5.1a_pk5_bl23 |
| hp | hp-ux | 11.00 |
| sun | sunos | 5.8 |
| isc | bind | 8.2.6 |
| hp | hp-ux | 11.11 |
| compaq | tru64 | 5.1a_pk4_bl21 |
| sco | unixware | 7.1.1 |
| nixu | namesurfer | suite_3.0.1 |
| compaq | tru64 | 5.1b |
| compaq | tru64 | 4.0f_pk8_bl22 |
| freebsd | freebsd | 4.8 |
| compaq | tru64 | 5.1a_pk1_bl1 |
| isc | bind | 8.3.6 |
| freebsd | freebsd | 5.0 |
| compaq | tru64 | 4.0g |
| compaq | tru64 | 5.1_pk6_bl20 |
| compaq | tru64 | 5.1b_pk1_bl1 |
| compaq | tru64 | 4.0f |
| isc | bind | 8.2.7 |
| compaq | tru64 | 5.1_pk3_bl17 |