CVE-2002-1221

Published: Nov 29, 2002Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

BIND 8.x through 8.3.3 allows remote attackers to cause a denial of service (crash) via SIG RR elements with invalid expiry times, which are removed from the internal BIND database and later cause a null dereference.

Affected (21)

Products: Isc: Bind · Freebsd: Freebsd · Openbsd: Openbsd

1 product

1 product

1 product

Configuration A

14 vulnerable

Vulnerable Software	Affected Versions
Isc Bind	Version 8.1.1
Isc Bind	Version 8.1.2
Isc Bind	Version 8.1
Isc Bind	Version 8.2.1
Isc Bind	Version 8.2.2
Isc Bind	Version 8.2.3
Isc Bind	Version 8.2.4
Isc Bind	Version 8.2.5
Isc Bind	Version 8.2.6
Isc Bind	Version 8.2
Isc Bind	Version 8.3.0
Isc Bind	Version 8.3.1
Isc Bind	Version 8.3.2
Isc Bind	Version 8.3.3

Configuration B

7 vulnerable

Vulnerable Software	Affected Versions
Freebsd Freebsd	Version 4.4
Freebsd Freebsd	Version 4.5
Freebsd Freebsd	Version 4.6
Freebsd Freebsd	Version 4.7
Openbsd Openbsd	Version 3.0
Openbsd Openbsd	Version 3.1
Openbsd Openbsd	Version 3.2

References (32)

http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21469

Source: cve@mitre.org

PatchVendor Advisory

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000546

Source: cve@mitre.org

http://lists.apple.com/archives/Security-announce/2002/Nov/msg00000.html

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=103713117612842&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=103763574715133&w=2

Source: cve@mitre.org

http://online.securityfocus.com/advisories/4999

Source: cve@mitre.org

http://online.securityfocus.com/archive/1/300019

Source: cve@mitre.org

http://www.cert.org/advisories/CA-2002-31.html

Source: cve@mitre.org

US Government Resource

http://www.ciac.org/ciac/bulletins/n-013.shtml

Source: cve@mitre.org

http://www.debian.org/security/2002/dsa-196

Source: cve@mitre.org

http://www.isc.org/products/BIND/bind-security.html

Source: cve@mitre.org

PatchVendor Advisory

http://www.kb.cert.org/vuls/id/581682

Source: cve@mitre.org

US Government Resource

http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-077.php

Source: cve@mitre.org

http://www.securityfocus.com/bid/6159

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/10333

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2094

Source: cve@mitre.org

http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21469

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000546

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.apple.com/archives/Security-announce/2002/Nov/msg00000.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=103713117612842&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=103763574715133&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://online.securityfocus.com/advisories/4999

Source: af854a3a-2127-422b-91ae-364da2661108

http://online.securityfocus.com/archive/1/300019

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.cert.org/advisories/CA-2002-31.html

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.ciac.org/ciac/bulletins/n-013.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2002/dsa-196

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.isc.org/products/BIND/bind-security.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.kb.cert.org/vuls/id/581682

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-077.php

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/6159

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/10333

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2094

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.