CVE-2010-0097

Published: Jan 22, 2010Modified: Apr 29, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P5, 9.5 before 9.5.2-P2, 9.6 before 9.6.1-P3, and 9.7.0 beta does not properly validate DNSSEC (1) NSEC and (2) NSEC3 records, which allows remote attackers to add the Authenticated Data (AD) flag to a forged NXDOMAIN response for an existing domain.

Affected (189)

Products: Isc: Bind

Isc

1 product

Bind

Configuration A

189 vulnerable

Vulnerable Software	Affected Versions
Isc Bind	Version 9.0.0 rc1
Isc Bind	Version 9.0.0 rc2
Isc Bind	Version 9.0.0 rc3
Isc Bind	Version 9.0.0 rc4
Isc Bind	Version 9.0.0 rc5
Isc Bind	Version 9.0.0 rc6
Isc Bind	Version 9.0.1
Isc Bind	Version 9.0.1 rc1
Isc Bind	Version 9.0.1 rc2
Isc Bind	Version 9.0
Isc Bind	Version 9.1.0 rc1
Isc Bind	Version 9.1.1
Isc Bind	Version 9.1.1 rc1
Isc Bind	Version 9.1.1 rc2
Isc Bind	Version 9.1.1 rc3
Isc Bind	Version 9.1.1 rc4
Isc Bind	Version 9.1.1 rc5
Isc Bind	Version 9.1.1 rc6
Isc Bind	Version 9.1.1 rc7
Isc Bind	Version 9.1.2
Isc Bind	Version 9.1.2 rc1
Isc Bind	Version 9.1.3
Isc Bind	Version 9.1.3 rc1
Isc Bind	Version 9.1.3 rc2
Isc Bind	Version 9.1.3 rc3
Isc Bind	Version 9.1
Isc Bind	Version 9.2.0
Isc Bind	Version 9.2.0 a1
Isc Bind	Version 9.2.0 a2
Isc Bind	Version 9.2.0 a3
Isc Bind	Version 9.2.0 b1
Isc Bind	Version 9.2.0 b2
Isc Bind	Version 9.2.0 rc10
Isc Bind	Version 9.2.0 rc1
Isc Bind	Version 9.2.0 rc2
Isc Bind	Version 9.2.0 rc3
Isc Bind	Version 9.2.0 rc4
Isc Bind	Version 9.2.0 rc5
Isc Bind	Version 9.2.0 rc6
Isc Bind	Version 9.2.0 rc7
Isc Bind	Version 9.2.0 rc8
Isc Bind	Version 9.2.0 rc9
Isc Bind	Version 9.2.1
Isc Bind	Version 9.2.1 rc1
Isc Bind	Version 9.2.1 rc2
Isc Bind	Version 9.2.2
Isc Bind	Version 9.2.2 p2
Isc Bind	Version 9.2.2 p3
Isc Bind	Version 9.2.2 rc1
Isc Bind	Version 9.2.3
Isc Bind	Version 9.2.3 rc1
Isc Bind	Version 9.2.3 rc2
Isc Bind	Version 9.2.3 rc3
Isc Bind	Version 9.2.3 rc4
Isc Bind	Version 9.2.4
Isc Bind	Version 9.2.4 rc2
Isc Bind	Version 9.2.4 rc3
Isc Bind	Version 9.2.4 rc4
Isc Bind	Version 9.2.4 rc5
Isc Bind	Version 9.2.4 rc6
Isc Bind	Version 9.2.4 rc7
Isc Bind	Version 9.2.4 rc8
Isc Bind	Version 9.2.5
Isc Bind	Version 9.2.5 b2
Isc Bind	Version 9.2.5 rc1
Isc Bind	Version 9.2.6
Isc Bind	Version 9.2.6 rc1
Isc Bind	Version 9.2.7
Isc Bind	Version 9.2.7 rc1
Isc Bind	Version 9.2.7 rc2
Isc Bind	Version 9.2.7 rc3
Isc Bind	Version 9.2.8
Isc Bind	Version 9.2.9
Isc Bind	Version 9.2.9 rc1
Isc Bind	Version 9.2
Isc Bind	Version 9.3.0
Isc Bind	Version 9.3.0 b2
Isc Bind	Version 9.3.0 b3
Isc Bind	Version 9.3.0 b4
Isc Bind	Version 9.3.0 rc1
Isc Bind	Version 9.3.0 rc2
Isc Bind	Version 9.3.0 rc3
Isc Bind	Version 9.3.0 rc4
Isc Bind	Version 9.3.1
Isc Bind	Version 9.3.1 b2
Isc Bind	Version 9.3.1 rc1
Isc Bind	Version 9.3.2
Isc Bind	Version 9.3.2 rc1
Isc Bind	Version 9.3.3
Isc Bind	Version 9.3.3 rc1
Isc Bind	Version 9.3.3 rc2
Isc Bind	Version 9.3.3 rc3
Isc Bind	Version 9.3.4
Isc Bind	Version 9.3.5
Isc Bind	Version 9.3.5 rc1
Isc Bind	Version 9.3.5 rc2
Isc Bind	Version 9.3.6
Isc Bind	Version 9.3.6 rc1
Isc Bind	Version 9.3
Isc Bind	Version 9.4.0
Isc Bind	Version 9.4.0 a1
Isc Bind	Version 9.4.0 a2
Isc Bind	Version 9.4.0 a3
Isc Bind	Version 9.4.0 a4
Isc Bind	Version 9.4.0 a5
Isc Bind	Version 9.4.0 a6
Isc Bind	Version 9.4.0 b1
Isc Bind	Version 9.4.0 b2
Isc Bind	Version 9.4.0 b3
Isc Bind	Version 9.4.0 b4
Isc Bind	Version 9.4.0 rc1
Isc Bind	Version 9.4.0 rc2
Isc Bind	Version 9.4.1
Isc Bind	Version 9.4.2
Isc Bind	Version 9.4.2 rc1
Isc Bind	Version 9.4.2 rc2
Isc Bind	Version 9.4.3
Isc Bind	Version 9.4.3 b1
Isc Bind	Version 9.4.3 b2
Isc Bind	Version 9.4.3 b3
Isc Bind	Version 9.4.3 p2
Isc Bind	Version 9.4.3 rc1
Isc Bind	Version 9.4
Isc Bind	Version 9.4
Isc Bind	Version 9.4 b1
Isc Bind	Version 9.4 r1
Isc Bind	Version 9.4 r2
Isc Bind	Version 9.4 r3
Isc Bind	Version 9.4 r4-p1
Isc Bind	Version 9.4 r4
Isc Bind	Version 9.4 r5-b1
Isc Bind	Version 9.4 r5-p1
Isc Bind	Version 9.4 r5-rc1
Isc Bind	Version 9.4 r5
Isc Bind	Version 9.5.0
Isc Bind	Version 9.5.0 a1
Isc Bind	Version 9.5.0 a2
Isc Bind	Version 9.5.0 a3
Isc Bind	Version 9.5.0 a4
Isc Bind	Version 9.5.0 a5
Isc Bind	Version 9.5.0 a6
Isc Bind	Version 9.5.0 a7
Isc Bind	Version 9.5.0 b1
Isc Bind	Version 9.5.0 b2
Isc Bind	Version 9.5.0 b3
Isc Bind	Version 9.5.0 p1
Isc Bind	Version 9.5.0 p2
Isc Bind	Version 9.5.0 p2_w1
Isc Bind	Version 9.5.0 p2_w2
Isc Bind	Version 9.5.0 rc1
Isc Bind	Version 9.5.1
Isc Bind	Version 9.5.1 b1
Isc Bind	Version 9.5.1 b2
Isc Bind	Version 9.5.1 b3
Isc Bind	Version 9.5.1 rc1
Isc Bind	Version 9.5.1 rc2
Isc Bind	Version 9.5.2
Isc Bind	Version 9.5.2 b1
Isc Bind	Version 9.5.2 p1
Isc Bind	Version 9.5
Isc Bind	Version 9.6.0
Isc Bind	Version 9.6.0 a1
Isc Bind	Version 9.6.0 b1
Isc Bind	Version 9.6.0 p1
Isc Bind	Version 9.6.0 rc1
Isc Bind	Version 9.6.0 rc2
Isc Bind	Version 9.6.1
Isc Bind	Version 9.6.1 b1
Isc Bind	Version 9.6.1 p1
Isc Bind	Version 9.6.1 p2
Isc Bind	Version 9.6
Isc Bind	Version 9.6 r1
Isc Bind	Version 9.6 r2
Isc Bind	Version 9.6 r3
Isc Bind	Version 9.6 r4
Isc Bind	Version 9.6 r4_p1
Isc Bind	Version 9.6 r5
Isc Bind	Version 9.6 r5_b1
Isc Bind	Version 9.6 r5_p1
Isc Bind	Version 9.6 r6
Isc Bind	Version 9.6 r6_b1
Isc Bind	Version 9.6 r6_rc1
Isc Bind	Version 9.6 r6_rc2
Isc Bind	Version 9.6 r7
Isc Bind	Version 9.6 r7_p1
Isc Bind	Version 9.6 r7_p2
Isc Bind	Version 9.6 r9
Isc Bind	Version 9.6 r9_p1
Isc Bind	Version 9.7.0

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (72)

ftp://ftp.sco.com/pub/unixware7/714/security/p535243_uw7/p535243b.txt (unsafe URL)

Source: cret@cert.org

http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html

Source: cret@cert.org

http://lists.fedoraproject.org/pipermail/package-announce/2010-January/034196.html

Source: cret@cert.org

http://lists.fedoraproject.org/pipermail/package-announce/2010-January/034202.html

Source: cret@cert.org

http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00009.html

Source: cret@cert.org

http://marc.info/?l=bugtraq&m=127195582210247&w=2

Source: cret@cert.org

http://secunia.com/advisories/38169

Source: cret@cert.org

Vendor Advisory

http://secunia.com/advisories/38219

Source: cret@cert.org

Vendor Advisory

http://secunia.com/advisories/38240

Source: cret@cert.org

Vendor Advisory

http://secunia.com/advisories/39334

Source: cret@cert.org

http://secunia.com/advisories/39582

Source: cret@cert.org

http://secunia.com/advisories/40086

Source: cret@cert.org

http://securitytracker.com/id?1023474

Source: cret@cert.org

http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021798.1-1

Source: cret@cert.org

http://support.apple.com/kb/HT5002

Source: cret@cert.org

http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0018

Source: cret@cert.org

http://www.debian.org/security/2010/dsa-2054

Source: cret@cert.org

http://www.kb.cert.org/vuls/id/360341

Source: cret@cert.org

US Government Resource

http://www.mandriva.com/security/advisories?name=MDVSA-2010:021

Source: cret@cert.org

http://www.osvdb.org/61853

Source: cret@cert.org

http://www.securityfocus.com/bid/37865

Source: cret@cert.org

http://www.ubuntu.com/usn/USN-888-1

Source: cret@cert.org

http://www.vupen.com/english/advisories/2010/0176

Source: cret@cert.org

Vendor Advisory

http://www.vupen.com/english/advisories/2010/0622

Source: cret@cert.org

http://www.vupen.com/english/advisories/2010/0981

Source: cret@cert.org

http://www.vupen.com/english/advisories/2010/1352

Source: cret@cert.org

https://bugzilla.redhat.com/show_bug.cgi?id=554851

Source: cret@cert.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/55753

Source: cret@cert.org

https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04952488

Source: cret@cert.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12205

Source: cret@cert.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7212

Source: cret@cert.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7430

Source: cret@cert.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9357

Source: cret@cert.org

https://rhn.redhat.com/errata/RHSA-2010-0062.html

Source: cret@cert.org

https://rhn.redhat.com/errata/RHSA-2010-0095.html

Source: cret@cert.org

https://www.isc.org/advisories/CVE-2010-0097

Source: cret@cert.org

ftp://ftp.sco.com/pub/unixware7/714/security/p535243_uw7/p535243b.txt (unsafe URL)