CVE-2012-1033
Description
The resolver in ISC BIND 9 through 9.8.1-P1 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a ghost domain names attack.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS Score
Exploitation Probability
1.868
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Update bind 9.8.1 to latest version | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.0 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.0 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.1.3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.3.0 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.3.2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.0.1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.0 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.3.1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.6 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.4 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.5 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.0.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.5.0 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.2.p3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.5 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.2.7 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.3 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.4.3.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.5.1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.6.0 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.6.0.p1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.6.0.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.6.0.rc2 | Windows |
| Vulnerabilities CVE-2009-4022,CVE-2010-0097,CVE-2011-1910,CVE-2012-1033 are affected in BIND 9.3.3 | Windows |
| Vulnerabilities CVE-2009-4022,CVE-2010-0097,CVE-2011-1910,CVE-2012-1033 are affected in BIND 9.5.0.rc1 | Windows |
| Vulnerabilities CVE-2009-4022,CVE-2010-0097,CVE-2011-1910,CVE-2012-1033 are affected in BIND 9.5.1.rc1 | Windows |
| Vulnerabilities CVE-2009-4022,CVE-2010-0097,CVE-2011-1910,CVE-2012-1033 are affected in BIND 9.5.1.rc2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.7.0 | Windows |
| Vulnerabilities CVE-2009-4022,CVE-2010-3613,CVE-2011-1910,CVE-2012-1033 are affected in BIND 9.7.0.b1 | Windows |
| Vulnerabilities CVE-2009-4022,CVE-2010-3613,CVE-2011-1910,CVE-2012-1033 are affected in BIND 9.7.0.p1 | Windows |
| Vulnerabilities CVE-2009-4022,CVE-2010-3613,CVE-2011-1910,CVE-2012-1033 are affected in BIND 9.7.0.rc1 | Windows |
| Vulnerabilities CVE-2009-4022,CVE-2010-3613,CVE-2011-1910,CVE-2012-1033 are affected in BIND 9.7.0.rc2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.7.1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.7.1.p1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.7.2 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.7.2.p1 | Windows |
| Vulnerabilities CVE-2010-3613,CVE-2011-1910,CVE-2012-1033 are affected in BIND 9.7.0.p2 | Windows |
| Vulnerabilities CVE-2010-3613,CVE-2011-0414,CVE-2011-1910,CVE-2012-1033 are affected in BIND 9.7.1.p2 | Windows |
| Vulnerabilities CVE-2010-3613,CVE-2011-0414,CVE-2011-1910,CVE-2012-1033 are affected in BIND 9.7.1.rc1 | Windows |
| Multiple Vulnerabilities are affected in BIND 9.7.2.p2 | Windows |
| Vulnerabilities CVE-2011-0414,CVE-2011-1910,CVE-2012-1033 are affected in BIND 9.7.2.p3 | Windows |
| Vulnerabilities CVE-2011-0414,CVE-2011-1910,CVE-2012-1033 are affected in BIND 9.7.2.rc1 | Windows |
| Vulnerabilities CVE-2011-1907,CVE-2011-1910,CVE-2011-2465,CVE-2012-1033 are affected in BIND 9.8.0 | Windows |
| Vulnerabilities CVE-2011-1910,CVE-2012-1033 are affected in BIND 9.7.3 | Windows |
| Vulnerabilities CVE-2011-1910,CVE-2012-1033 are affected in BIND 9.7.3.b1 | Windows |
| Vulnerabilities CVE-2011-1910,CVE-2012-1033 are affected in BIND 9.8.0.a1 | Windows |
| Vulnerabilities CVE-2011-1910,CVE-2012-1033 are affected in BIND 9.8.0.b1 | Windows |
| Vulnerabilities CVE-2011-1910,CVE-2011-2465,CVE-2012-1033 are affected in BIND 9.8.0.p1 | Windows |
| Vulnerabilities CVE-2011-2465,CVE-2012-1033 are affected in BIND 9.8.0.p2 | Windows |
| Vulnerabilities CVE-2011-2465,CVE-2012-1033 are affected in BIND 9.8.1.b1 | Windows |
| Vulnerabilities CVE-2012-1033 are affected in BIND 9.7.3.p1 | Windows |
| Vulnerabilities CVE-2012-1033 are affected in BIND 9.7.3.rc1 | Windows |
| Vulnerabilities CVE-2012-1033 are affected in BIND 9.7.4 | Windows |
| Vulnerabilities CVE-2012-1033 are affected in BIND 9.7.4.b1 | Windows |
| Vulnerabilities CVE-2012-1033 are affected in BIND 9.8.0.p4 | Windows |
| Vulnerabilities CVE-2012-1033 are affected in BIND 9.8.0.rc1 | Windows |
| Vulnerabilities CVE-2012-1033 are affected in BIND 9.8.1 | Windows |
| Vulnerabilities CVE-2012-1033 are affected in BIND 9.8.1.b2 | Windows |
| Vulnerabilities CVE-2012-1033 are affected in BIND 9.8.1.b3 | Windows |
| Vulnerabilities CVE-2012-1033 are affected in BIND 9.8.1.p1 | Windows |
| Vulnerabilities CVE-2012-1033 are affected in BIND 9.8.1.rc1 | Windows |
| Internet Domain Name Server (USN-1462-1) libdns81_9.8.1.dfsg.P1-4_i386.deb | Linux |
| Internet Domain Name Server (USN-1462-1) libdns81_9.8.1.dfsg.P1-4_amd64.deb | Linux |
| Internet Domain Name Server (USN-1462-1) libdns81_9.8.1.dfsg.P1-4ubuntu0.13_i386.deb | Linux |
| Internet Domain Name Server (USN-1462-1) libdns81_9.8.1.dfsg.P1-4ubuntu0.13_amd64.deb | Linux |
| CVE-2012-1033 | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234