Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2007-0494

EPSS 41.54% · P97
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2007-0494

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
ISC BIND 9.0.x, 9.1.x, 9.2.0 up to 9.2.7, 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 (Bind Forum only) allows remote attackers to cause a denial of service (exit) via a type * (ANY) DNS query response that contains multiple RRsets, which triggers an assertion error, aka the "DNSSEC Validation" vulnerability.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
ISC BIND DNSSEC验证远程拒绝服务漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
ISC BIND是美国Internet Systems Consortium(ISC)公司所维护的一套实现了DNS协议的开源软件。 ISC BIND在处理用户请求时存在漏洞,远程攻击者可能利用此漏洞导致BIND拒绝服务。在验证对type * (ANY)请求的响应时如果请求在回答会话中返回了多个RRset的话就可能触发异常处理,导致BIND拒绝服务。仅在用户通过指定可信任密钥在named.conf中启用了dnssec验证的情况下才会出现这个漏洞。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2007-0494

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2007-0494

登录查看更多情报信息。

Same Patch Batch · n/a · 2007-01-25 · 28 CVEs total

CVE-2007-0479Cisco IOS特制TCP报文远程拒绝服务漏洞
CVE-2007-0492webSPELL 'gallery.php' 多个SQL注入漏洞
CVE-2007-0491Sky GUNNING MySpeach 'up.php' 远程文件包含漏洞
CVE-2007-0490Open-Realty 'index.php' 全路径信息泄露径漏洞
CVE-2007-0489VisoHotlink 'Functions.Visohotlink.PHP' 远程文件包含漏洞
CVE-2007-0488Quidway R1600路由器2500E-003固件拒绝服务攻击漏洞
CVE-2007-0487FreeForum 'index.php' PHP远程文件包含漏洞
CVE-2007-0486Openads 多个PHP远程文件包含漏洞
CVE-2007-0485WebChat 'defines.php' PHP远程文件包含漏洞
CVE-2007-0484Indiscripts Enthusiast 多个SQL注入漏洞
CVE-2007-0483Indiscripts Enthusiast 多个跨站攻击漏洞
CVE-2007-0482Sun Ray Server管理GUI管理员口令泄露漏洞
CVE-2007-0481Cisco IOS畸形IPv6路由头结构处理远程拒绝服务漏洞
CVE-2007-0480Cisco IOS畸形IP选项远程拒绝服务及代码执行漏洞
CVE-2007-0495PhpSherpa 'config.inc.php'远程文件包含漏洞
CVE-2007-0478Apple Mac OS X中HTML标题代码漏洞
CVE-2007-0477Openads 'admin-search.php' 跨站脚本攻击漏洞
CVE-2007-0476OpenLDAP Gentoo ' GenCert.SH ' 任意文件重写漏洞
CVE-2007-0493ISC BIND 安全漏洞
CVE-2007-0503Sun Solaris 'kcms_calibrate' 本地任意指令执行漏洞

Showing top 20 of 28 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2007-0494

No comments yet

Leave a comment