Unbound DNS Server NSEC3 Signature Verification DNS Spoofing Vulnerability

Bugtraq ID:	37459
Class:	Design Error
CVE:	CVE-2009-3602
Remote:	Yes
Local:	No
Published:	Oct 07 2009 12:00AM
Updated:	Feb 23 2010 06:32PM
Credit:	Unbound
Vulnerable:	Unbound Unbound 1.3.3 S.u.S.E. openSUSE 11.2 S.u.S.E. openSUSE 11.1 Debian Linux 5.0 sparc Debian Linux 5.0 s/390 Debian Linux 5.0 powerpc Debian Linux 5.0 mipsel Debian Linux 5.0 mips Debian Linux 5.0 m68k Debian Linux 5.0 ia-64 Debian Linux 5.0 ia-32 Debian Linux 5.0 hppa Debian Linux 5.0 armel Debian Linux 5.0 arm Debian Linux 5.0 amd64 Debian Linux 5.0 alpha Debian Linux 5.0

Not Vulnerable:	Unbound Unbound 1.3.4