Vulnerability Note VU#718460
ISC BIND denial of service vulnerability
A vulnerability in the BIND name server could allow a remote attacker to cause a denial of service against an affected system.
A remote attacker may be able to cause the name server daemon to exit prematurely, thereby causing a denial of service for DNS operations.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Internet Software Consortium||Affected||29 Apr 2007||02 May 2007|
|Mandriva, Inc.||Affected||02 May 2007||15 May 2007|
|NetBSD||Affected||02 May 2007||03 Jul 2007|
|Apple Computer, Inc.||Not Affected||02 May 2007||15 May 2007|
|Novell, Inc.||Not Affected||02 May 2007||09 May 2007|
|Openwall GNU/*/Linux||Not Affected||02 May 2007||09 May 2007|
|Slackware Linux Inc.||Not Affected||02 May 2007||03 May 2007|
|Sun Microsystems, Inc.||Not Affected||02 May 2007||15 May 2007|
|Ubuntu||Not Affected||02 May 2007||03 May 2007|
|BlueCat Networks, Inc.||Unknown||02 May 2007||02 May 2007|
|Check Point Software Technologies||Unknown||02 May 2007||02 May 2007|
|Conectiva Inc.||Unknown||02 May 2007||02 May 2007|
|Cray Inc.||Unknown||02 May 2007||02 May 2007|
|Debian GNU/Linux||Unknown||02 May 2007||02 May 2007|
|EMC, Inc. (formerly Data General Corporation)||Unknown||02 May 2007||02 May 2007|
CVSS Metrics (Learn More)
Thanks to Mark Andrews of the Internet Systems Consortium (ISC) for reporting this vulnerability.
This document was written by Chad R Dougherty.
- CVE IDs: CVE-2007-2241
- Date Public: 01 May 2007
- Date First Published: 03 May 2007
- Date Last Updated: 03 Jul 2007
- Severity Metric: 6.90
- Document Revision: 13
If you have feedback, comments, or additional information about this vulnerability, please send us email.