Vendor CVEs
Isc
All CVEs
270 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2002-2212 | 0.00 | — | 0.02 | Dec 31, 2002 | The DNS resolver in unspecified versions of Fujitsu UXP/V, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined… | |||
| CVE-2002-0526 | 0.00 | — | 0.01 | Aug 12, 2002 | Vulnerability in (1) inews or (2) rnews for INN 2.2.3 and earlier, related to insecure open() calls. | |||
| CVE-2002-0684 | 0.00 | — | 0.06 | Aug 12, 2002 | Buffer overflow in DNS resolver functions that perform lookup of network names and addresses, as used in BIND 4.9.8 and ported to glibc 2.2.5 and earlier, allows remote malicious DNS servers to execute arbitrary code through a subroutine used by functions such as getnetbyname… | |||
| CVE-2001-0012 | 0.00 | — | 0.04 | Feb 12, 2001 | BIND 4 and BIND 8 allow remote attackers to access sensitive information such as environment variables. | |||
| CVE-2000-0360 | 0.00 | — | 0.03 | Oct 20, 2000 | Buffer overflow in INN 2.2.1 and earlier allows remote attackers to cause a denial of service via a maliciously formatted article. | |||
| CVE-2000-0335 | 0.00 | — | 0.02 | May 3, 2000 | The resolver in glibc 2.1.3 uses predictable IDs, which allows a local attacker to spoof DNS query results. | |||
| CVE-1999-0706 | 0.00 | — | 0.02 | Apr 27, 2000 | Linux xmonisdn package allows local users to gain root privileges by modifying the IFS or PATH environmental variables. | |||
| CVE-1999-0808 | 0.00 | — | 0.03 | Dec 31, 1999 | Multiple buffer overflows in ISC DHCP Distribution server (dhcpd) 1.0 and 2.0 allow a remote attacker to cause a denial of service (crash) and possibly execute arbitrary commands via long options. | |||
| CVE-1999-0849 | 0.00 | — | 0.03 | Nov 10, 1999 | Denial of service in BIND named via maxdname. | |||
| CVE-1999-0833 | 0.00 | — | 0.02 | Nov 10, 1999 | Buffer overflow in BIND 8.2 via NXT records. | |||
| CVE-1999-0851 | 0.00 | — | 0.00 | Nov 10, 1999 | Denial of service in BIND named via naptr. | |||
| CVE-1999-0837 | 0.00 | — | 0.03 | Nov 10, 1999 | Denial of service in BIND by improperly closing TCP sessions via so_linger. | |||
| CVE-1999-0785 | 0.00 | — | 0.01 | May 11, 1999 | The INN inndstart program allows local users to gain root privileges via the "pathrun" parameter in the inn.conf file. | |||
| CVE-1999-0754 | 0.00 | — | 0.03 | May 11, 1999 | The INN inndstart program allows local users to gain privileges by specifying an alternate configuration file using the INNCONF environmental variable. | |||
| CVE-1999-0010 | 0.00 | — | 0.02 | Apr 8, 1998 | Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages. | |||
| CVE-1999-0024 | 0.00 | — | 0.05 | Aug 13, 1997 | DNS cache poisoning via BIND, by predictable query IDs. | |||
| CVE-1999-0247 | 0.00 | — | 0.04 | Jul 21, 1997 | Buffer overflow in nnrpd program in INN up to version 1.6 allows remote users to execute arbitrary commands. | |||
| CVE-1999-0184 | 0.00 | — | 0.02 | Jul 1, 1997 | When compiled with the -DALLOW_UPDATES option, bind allows dynamic updates to the DNS server, allowing for malicious modification of DNS records. | |||
| CVE-1999-0868 | 0.00 | — | 0.01 | Feb 20, 1997 | ucbmail allows remote attackers to execute commands via shell metacharacters that are passed to it from INN. | |||
| CVE-1999-0100 | 0.00 | — | 0.03 | Jan 1, 1997 | Remote access in AIX innd 1.5.1, using control messages. |
- CVE-2002-2212Dec 31, 2002risk 0.00cvss —epss 0.02
The DNS resolver in unspecified versions of Fujitsu UXP/V, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined…
- CVE-2002-0526Aug 12, 2002risk 0.00cvss —epss 0.01
Vulnerability in (1) inews or (2) rnews for INN 2.2.3 and earlier, related to insecure open() calls.
- CVE-2002-0684Aug 12, 2002risk 0.00cvss —epss 0.06
Buffer overflow in DNS resolver functions that perform lookup of network names and addresses, as used in BIND 4.9.8 and ported to glibc 2.2.5 and earlier, allows remote malicious DNS servers to execute arbitrary code through a subroutine used by functions such as getnetbyname…
- CVE-2001-0012Feb 12, 2001risk 0.00cvss —epss 0.04
BIND 4 and BIND 8 allow remote attackers to access sensitive information such as environment variables.
- CVE-2000-0360Oct 20, 2000risk 0.00cvss —epss 0.03
Buffer overflow in INN 2.2.1 and earlier allows remote attackers to cause a denial of service via a maliciously formatted article.
- CVE-2000-0335May 3, 2000risk 0.00cvss —epss 0.02
The resolver in glibc 2.1.3 uses predictable IDs, which allows a local attacker to spoof DNS query results.
- CVE-1999-0706Apr 27, 2000risk 0.00cvss —epss 0.02
Linux xmonisdn package allows local users to gain root privileges by modifying the IFS or PATH environmental variables.
- CVE-1999-0808Dec 31, 1999risk 0.00cvss —epss 0.03
Multiple buffer overflows in ISC DHCP Distribution server (dhcpd) 1.0 and 2.0 allow a remote attacker to cause a denial of service (crash) and possibly execute arbitrary commands via long options.
- CVE-1999-0849Nov 10, 1999risk 0.00cvss —epss 0.03
Denial of service in BIND named via maxdname.
- CVE-1999-0833Nov 10, 1999risk 0.00cvss —epss 0.02
Buffer overflow in BIND 8.2 via NXT records.
- CVE-1999-0851Nov 10, 1999risk 0.00cvss —epss 0.00
Denial of service in BIND named via naptr.
- CVE-1999-0837Nov 10, 1999risk 0.00cvss —epss 0.03
Denial of service in BIND by improperly closing TCP sessions via so_linger.
- CVE-1999-0785May 11, 1999risk 0.00cvss —epss 0.01
The INN inndstart program allows local users to gain root privileges via the "pathrun" parameter in the inn.conf file.
- CVE-1999-0754May 11, 1999risk 0.00cvss —epss 0.03
The INN inndstart program allows local users to gain privileges by specifying an alternate configuration file using the INNCONF environmental variable.
- CVE-1999-0010Apr 8, 1998risk 0.00cvss —epss 0.02
Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.
- CVE-1999-0024Aug 13, 1997risk 0.00cvss —epss 0.05
DNS cache poisoning via BIND, by predictable query IDs.
- CVE-1999-0247Jul 21, 1997risk 0.00cvss —epss 0.04
Buffer overflow in nnrpd program in INN up to version 1.6 allows remote users to execute arbitrary commands.
- CVE-1999-0184Jul 1, 1997risk 0.00cvss —epss 0.02
When compiled with the -DALLOW_UPDATES option, bind allows dynamic updates to the DNS server, allowing for malicious modification of DNS records.
- CVE-1999-0868Feb 20, 1997risk 0.00cvss —epss 0.01
ucbmail allows remote attackers to execute commands via shell metacharacters that are passed to it from INN.
- CVE-1999-0100Jan 1, 1997risk 0.00cvss —epss 0.03
Remote access in AIX innd 1.5.1, using control messages.
Page 6 of 6