CVE-2009-0025
Description
BIND 9.6.0, 9.5.1, 9.5.0, 9.4.3, and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.
Risk Information
Base Score
7.5
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS Score
Exploitation Probability
1.144
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Update bind 9.6.0 to latest version | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.0 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.0 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.0.1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.0 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.6 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.4 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.5 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.0.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.5.0 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.0.0.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.0.0.rc2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.0.0.rc3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.0.0.rc4 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.0.0.rc5 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.0.0.rc6 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.0.1.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.0.1.rc2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.0.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.1.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.1.rc2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.1.rc3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.1.rc4 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.1.rc5 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.1.rc6 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.1.rc7 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.2.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.3.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.3.rc2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.3.rc3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.0.a1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.0.a2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.0.a3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.0.b1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.0.b2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.0.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.0.rc10 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.0.rc2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.0.rc3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.0.rc4 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.0.rc5 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.0.rc6 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.0.rc7 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.0.rc8 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.0.rc9 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.1.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.1.rc2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.2.p2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.2.p3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.2.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.3.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.3.rc2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.3.rc3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.3.rc4 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.4.rc2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.4.rc3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.4.rc4 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.4.rc5 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.4.rc6 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.4.rc7 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.4.rc8 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.5.b2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.5.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.6.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.0.a1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.0.a2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.0.a3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.0.a4 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.0.a5 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.0.b1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.0.b2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.0.b3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.7 | Windows |
| Vulnerabilities CVE-2009-0025,CVE-2009-4022,CVE-2010-0097,CVE-2011-1910 are affected in BIND 9.2.7.rc1 | Windows |
| Vulnerabilities CVE-2009-0025,CVE-2009-4022,CVE-2010-0097,CVE-2011-1910 are affected in BIND 9.2.7.rc2 | Windows |
| Vulnerabilities CVE-2009-0025,CVE-2009-4022,CVE-2010-0097,CVE-2011-1910 are affected in BIND 9.2.7.rc3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.0.a6 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.0.b4 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.0.rc2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.2.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.2.rc2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.3.b1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.3.b2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.3.b3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.3.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.5.1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.6.0 | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234