← back
CVE-2003-0914

CVE-2003-0914

EPSS 3.2%
ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2004-003.0/CSSA-2004-003.0.txtftp://ftp.sco.com/pub/updates/UnixWare/CSSA-2003-SCO.33/CSSA-2003-SCO.33.txthttp://secunia.com/advisories/10542https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2011http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57434http://www.debian.org/security/2004/dsa-409http://www.kb.cert.org/vuls/id/734644http://www.trustix.org/errata/misc/2003/TSL-2003-0044-bind.asc.txt