CVE-2015-5477
CVE-2015-5477
named in ISC BIND 9.x before 9.9.7-P2 and 9.10.x before 9.10.2-P3 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via TKEY queries.
Productos afectados
n/a · n/aPoCs públicas encontradas — 12
githubgithub.com/robertdavidgraham/cve-2015-5477★ 64githubgithub.com/elceef/tkeypoc★ 14githubgithub.com/ilanyu/cve-2015-5477★ 1githubgithub.com/knqyf263/cve-2015-5477★ 1githubgithub.com/hmlio/vaas-cve-2015-5477★ 1githubgithub.com/likekabin/ShareDoc_cve-2015-5477★ 0githubgithub.com/xycloops123/TKEY-remote-DoS-vulnerability-exploit★ 0cve_referencewww.exploit-db.com/exploits/37723/no verificadocve_referencewww.exploit-db.com/exploits/37721/no verificadocve_referencepacketstormsecurity.com/files/132926/BIND-TKEY-Query-Denial-Of-Service.htmlno verificadoexploitdbwww.exploit-db.com/exploits/37723no verificadoexploitdbwww.exploit-db.com/exploits/37721no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10718http://lists.fedoraproject.org/pipermail/package-announce/2015-August/163006.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2015-August/163007.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2015-August/163015.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-07/msg00043.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-07/msg00044.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-07/msg00045.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-07/msg00048.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-07/msg00050.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-08/msg00001.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-01/msg00033.htmlhttp://marc.info/?l=bugtraq&m=144000632319155&w=2