FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2007-0493

This CVE name corresponds to:

Entered Topic
2007-02-27 bind -- Multiple Denial of Service vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2007-0493
Phase Assigned(20070125)

Description

Use-after-free vulnerability in ISC BIND 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 (Bind Forum only) allows remote attackers to cause a denial of service (named daemon crash) via unspecified vectors that cause named to "dereference a freed fetch context."

References

Source Reference
BUGTRAQ 20070125 BIND remote exploit (low severity) [Fwd: Internet Systems Consortium Security Advisory.]
FULLDISC 20070125 BIND remote exploit (low severity) [Fwd: Internet Systems Consortium Security Advisory.]
MLIST [bind-announce] 20070125 Internet Systems Consortium Security Advisory.
CONFIRM http://www.isc.org/index.pl?/sw/bind/bind-security.php
CONFIRM http://www.isc.org/index.pl?/sw/bind/view/?release=9.2.8
CONFIRM http://www.isc.org/index.pl?/sw/bind/view/?release=9.3.4
CONFIRM https://issues.rpath.com/browse/RPL-989
CONFIRM http://docs.info.apple.com/article.html?artnum=305530
APPLE APPLE-SA-2007-05-24
FEDORA FEDORA-2007-147
FEDORA FEDORA-2007-164
FREEBSD FreeBSD-SA-07:02
GENTOO GLSA-200702-06
HP HPSBTU02207
HP SSRT061213
HP SSRT061239
HP SSRT071304
HP HPSBUX02219
HP SSRT061273
MANDRIVA MDKSA-2007:030
NETBSD NetBSD-SA2007-003
OPENPKG OpenPKG-SA-2007.007
REDHAT RHSA-2007:0057
SLACKWARE SSA:2007-026-01
SUSE SUSE-SA:2007:014
TRUSTIX 2007-0005
UBUNTU USN-418-1
BID 22229
OVAL oval:org.mitre.oval:def:9614
VUPEN ADV-2007-0349
VUPEN ADV-2007-1401
VUPEN ADV-2007-1939
VUPEN ADV-2007-2163
VUPEN ADV-2007-2315
SECTRACK 1017561
SECUNIA 23904
SECUNIA 23972
SECUNIA 23924
SECUNIA 23943
SECUNIA 23974
SECUNIA 23977
SECUNIA 24054
SECUNIA 24014
SECUNIA 24048
SECUNIA 24129
SECUNIA 24203
SECUNIA 24950
SECUNIA 24930
SECUNIA 25402
SECUNIA 25649