|
|
Multiple Vendors BIND 'inet_network()' Off-by-One Buffer Overflow Vulnerability
|
Bugtraq ID:
|
27283
|
|
Class:
|
Boundary Condition Error
|
|
CVE:
|
CVE-2008-0122
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Jan 14 2008 12:00AM
|
|
Updated:
|
Jun 16 2008 02:22PM
|
|
Credit:
|
Bjoern A. Zeeb and Nate Eldredge discovered this issue.
|
|
Vulnerable:
|
Turbolinux Turbolinux Server 10.0
Turbolinux Turbolinux Server 11 x64
Turbolinux Turbolinux Server 11
Turbolinux Turbolinux Server 10.0.0 x64
Turbolinux Appliance Server Workgroup Edition 1.0
Turbolinux Appliance Server Hosting Edition 1.0
Turbolinux Appliance Server 1.0 Workgroup Edition
Turbolinux Appliance Server 1.0 Hosting Edition
Turbolinux Appliance Server 2.0
Sun Solaris 9
Sun Solaris 8_x86
Sun Solaris 8
Sun Solaris 10
S.u.S.E. UnitedLinux 1.0
S.u.S.E. SuSE Linux Standard Server 8.0
S.u.S.E. SuSE Linux School Server for i386
S.u.S.E. SUSE LINUX Retail Solution 8.0
S.u.S.E. SuSE Linux Openexchange Server 4.0
S.u.S.E. SuSE Linux Open-Xchange 4.1
S.u.S.E. SUSE Linux Enterprise Server RT Solution 10 0
S.u.S.E. SUSE Linux Enterprise Server 9 SP3
S.u.S.E. SUSE Linux Enterprise Server 10 SP1
S.u.S.E. SUSE Linux Enterprise Server 10
S.u.S.E. SUSE Linux Enterprise Desktop 10 SP1
S.u.S.E. SUSE Linux Enterprise Desktop 10
S.u.S.E. SUSE Linux Enterprise 10 SP1 DEBUGINFO
S.u.S.E. SUSE Linux Enterprise 10 SP1 DEBUGINFO
S.u.S.E. SLE SDK 10.SP1
S.u.S.E. SLE SDK 10
S.u.S.E. openSUSE 10.3
S.u.S.E. openSUSE 10.2
S.u.S.E. openSUSE 10.1
S.u.S.E. Open-Enterprise-Server 9.0
S.u.S.E. Open-Enterprise-Server 1
S.u.S.E. Open-Enterprise-Server 0
S.u.S.E. Office Server
S.u.S.E. Novell Linux POS 9
S.u.S.E. Novell Linux Desktop SDK 9.0
S.u.S.E. Novell Linux Desktop 9.0
S.u.S.E. Novell Linux Desktop 1.0
S.u.S.E. Novell Linux Desktop 9
S.u.S.E. Linux Professional 10.0 OSS
S.u.S.E. Linux Professional 10.0
S.u.S.E. Linux Professional 10.2 x86_64
S.u.S.E. Linux Professional 10.2
S.u.S.E. Linux Professional 10.1
S.u.S.E. Linux Personal 10.0 OSS
S.u.S.E. Linux Personal 10.2 x86_64
S.u.S.E. Linux Personal 10.2
S.u.S.E. Linux Personal 10.1
S.u.S.E. Linux Enterprise Server 9
S.u.S.E. Linux Enterprise Server 8
S.u.S.E. Linux Enterprise Server 10.SP1
S.u.S.E. Linux Enterprise Server 10
+
Linux kernel 2.6.5
S.u.S.E. Linux Enterprise SDK 10 SP1
S.u.S.E. Linux Enterprise SDK 10
S.u.S.E. Linux Desktop 1.0
S.u.S.E. Linux Desktop 10
S.u.S.E. Linux 10.1 x86-64
S.u.S.E. Linux 10.1 x86
S.u.S.E. Linux 10.1 ppc
S.u.S.E. Linux 10.0 x86-64
S.u.S.E. Linux 10.0 x86
S.u.S.E. Linux 10.0 ppc
rPath rPath Linux 1
RedHat Fedora 8 0
RedHat Fedora 7 0
RedHat Enterprise Linux Desktop Workstation 5 client
RedHat Enterprise Linux Desktop 5 client
RedHat Enterprise Linux 5 server
ISC BIND 9.5 a2
ISC BIND 9.5 a1
ISC BIND 9.4.1 -P1
ISC BIND 9.4.1
ISC BIND 9.4 rc2
ISC BIND 9.4 rc1
ISC BIND 9.4 b4
ISC BIND 9.4 b3
ISC BIND 9.4 b3
ISC BIND 9.4 b2
ISC BIND 9.4 b1
ISC BIND 9.4 a6
ISC BIND 9.4 a5
ISC BIND 9.4 a4
ISC BIND 9.4 a3
ISC BIND 9.4 a2
ISC BIND 9.4 a1
ISC BIND 9.4
ISC BIND 9.3.4
ISC BIND 9.3.3 rc3
ISC BIND 9.3.3 rc2
ISC BIND 9.3.3 rc1
ISC BIND 9.3.3 rc1
ISC BIND 9.3.3 b1
ISC BIND 9.3.3 b
ISC BIND 9.3.3
ISC BIND 9.3.2 -P2
ISC BIND 9.3.2 -P1
ISC BIND 9.3.2
ISC BIND 9.3.1
ISC BIND 9.3
ISC BIND 9.2.8
ISC BIND 9.2.7 rc3
ISC BIND 9.2.7 rc2
ISC BIND 9.2.7 rc1
ISC BIND 9.2.7 b1
ISC BIND 9.2.7
ISC BIND 9.2.6 -P2
ISC BIND 9.2.6 -P1
ISC BIND 9.2.6
ISC BIND 9.2.5
ISC BIND 9.2.4
ISC BIND 9.2.3
ISC BIND 9.2.2
ISC BIND 9.2.1
+
Caldera OpenUnix 8.0
+
MandrakeSoft Linux Mandrake 7.2
+
MandrakeSoft Single Network Firewall 7.2
+
SCO Unixware 7.1.3
ISC BIND 9.2
ISC BIND 9.1.3
ISC BIND 9.1.2
+
Conectiva Linux 7.0
+
S.u.S.E. Linux 7.2 i386
+
S.u.S.E. Linux 7.2
ISC BIND 9.1.1
ISC BIND 9.1
+
Caldera OpenUnix 8.0
+
HP Secure OS software for Linux 1.0
+
RedHat Linux 7.1 ia64
+
RedHat Linux 7.1 i386
+
RedHat Linux 7.1 alpha
+
RedHat Linux 7.1
+
S.u.S.E. Linux 7.1 x86
+
S.u.S.E. Linux 7.1 sparc
+
S.u.S.E. Linux 7.1 ppc
+
S.u.S.E. Linux 7.1 alpha
+
S.u.S.E. Linux 7.1
ISC BIND 9.0.1
ISC BIND 9.0
+
S.u.S.E. Linux 7.0 sparc
+
S.u.S.E. Linux 7.0 ppc
+
S.u.S.E. Linux 7.0 i386
+
S.u.S.E. Linux 7.0 alpha
+
S.u.S.E. Linux 7.0
ISC BIND 8.4.7 -P1
ISC BIND 8.4.7
ISC BIND 8.4.6
ISC BIND 8.4.5
ISC BIND 8.4.4
ISC BIND 8.4.3
ISC BIND 8.4.2
ISC BIND 8.4.1
ISC BIND 8.4
ISC BIND 8.3.7
ISC BIND 8.3.6
ISC BIND 8.3.5
ISC BIND 8.3.4
ISC BIND 8.3.3
+
Apple Mac OS X 10.2.2
+
Apple Mac OS X 10.2.1
+
Apple Mac OS X 10.2
+
Apple Mac OS X 10.1.5
+
Apple Mac OS X 10.1.4
+
Apple Mac OS X 10.1.3
+
Apple Mac OS X 10.1.2
+
Apple Mac OS X 10.1.1
+
Apple Mac OS X 10.1
+
Apple Mac OS X 10.1
+
Apple Mac OS X Server 10.2.2
+
Apple Mac OS X Server 10.2.1
+
Apple Mac OS X Server 10.2
+
Apple Mac OS X Server 10.0
+
Debian Linux 3.0
+
FreeBSD FreeBSD 4.7 -RELEASE
+
FreeBSD FreeBSD 4.7
+
MandrakeSoft Linux Mandrake 7.2
+
MandrakeSoft Single Network Firewall 7.2
+
OpenPKG OpenPKG 1.1
+
OpenPKG OpenPKG Current
ISC BIND 8.3.2
+
FreeBSD FreeBSD 4.6 -RELEASE
+
FreeBSD FreeBSD 4.6
ISC BIND 8.3.1
ISC BIND 8.3 .0
ISC BIND 8.2.7
ISC BIND 8.2.6
+
Conectiva Linux 6.0
+
OpenPKG OpenPKG 1.0
+
Trustix Secure Linux 1.5
+
Trustix Secure Linux 1.2
ISC BIND 8.2.5
ISC BIND 8.2.4
+
S.u.S.E. Linux 8.1
+
S.u.S.E. Linux 8.0
+
S.u.S.E. Linux 7.3 sparc
+
S.u.S.E. Linux 7.3 ppc
+
S.u.S.E. Linux 7.3
+
Trustix Secure Linux 1.2
ISC BIND 8.2.3 Beta
ISC BIND 8.2.3
ISC BIND 8.2.2 p7
ISC BIND 8.2.2 p6
ISC BIND 8.2.2 p5
ISC BIND 8.2.2 p4
ISC BIND 8.2.2 p3
ISC BIND 8.2.2 p2
ISC BIND 8.2.2 p1
ISC BIND 8.2.2
ISC BIND 8.2.1
ISC BIND 8.2
-
Caldera OpenLinux 2.2
-
Caldera OpenLinux 1.3
-
Caldera UnixWare 7.1.1
-
IBM AIX 4.3.3
-
IBM AIX 4.3.2
-
IBM AIX 4.3.1
-
IBM AIX 4.3
-
RedHat Linux 6.1 i386
-
RedHat Linux 6.0
-
RedHat Linux 5.2 i386
-
RedHat Linux 5.1
-
RedHat Linux 5.0
-
RedHat Linux 4.2
-
RedHat Linux 4.1
-
RedHat Linux 4.0
-
Slackware Linux 4.0
ISC BIND 8.1.2
+
HP HP-UX 11.11
+
HP HP-UX 11.0
ISC BIND 8.1.1
ISC BIND 8.1
ISC BIND 9.5.0b1
ISC BIND 9.5.0a7
ISC BIND 9.5.0a6
ISC BIND 9.5.0a5
ISC BIND 9.5.0a4
ISC BIND 9.5.0a3
ISC BIND 9.5.0a3
IBM AIX 6.1
IBM AIX 5.3
IBM AIX 5.2
FreeBSD FreeBSD 6.0 -STABLE
FreeBSD FreeBSD 7.0 -RELENG
FreeBSD FreeBSD 7.0 -PRERELEASE
FreeBSD FreeBSD 6.3 -RELENG
FreeBSD FreeBSD 6.2 -RELENG
FreeBSD FreeBSD 6.2
Avaya Interactive Response 3.0
Avaya Interactive Response 2.0
Avaya CMS Server 13.0
Avaya CMS Server 12.0
Avaya CMS Server 14.0
Avaya CMS Server 13.1
|
|
|
|
Not Vulnerable:
|
ISC BIND 9.4.3
ISC BIND 9.3.5
ISC BIND 9.5.0b2
|
|
|
