National Vulnerability Database (NVD) National Vulnerability Database (CVE-2009-4022)

National Cyber Awareness System

Vulnerability Summary for CVE-2009-4022

Original release date:11/25/2009

Last revised:10/27/2011

Source: US-CERT/NIST

Overview

Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P4, 9.5 before 9.5.2-P1, 9.6 before 9.6.1-P2, and 9.7 beta before 9.7.0b3, with DNSSEC validation enabled and checking disabled (CD), allows remote attackers to conduct DNS cache poisoning attacks by receiving a recursive client query and sending a response that contains an Additional section with crafted data, which is not properly handled when the response is processed "at the same time as requesting DNSSEC records (DO)," aka Bug 20438.

Impact

CVSS Severity (version 2.0):

CVSS v2 Base Score:2.6 (LOW) (AV:N/AC:H/Au:N/C:N/I:P/A:N) (legend)

Impact Subscore: 2.9

Exploitability Subscore: 4.9

CVSS Version 2 Metrics:

Access Vector: Network exploitable

Access Complexity: High

Authentication: Not required to exploit

Impact Type:Allows unauthorized modification

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

US-CERT Vulnerability Note: VU#418861

Name: VU#418861

Hyperlink:http://www.kb.cert.org/vuls/id/418861

External Source: CONFIRM

Name: https://bugzilla.redhat.com/show_bug.cgi?id=538744

Type: Patch Information

Hyperlink:https://bugzilla.redhat.com/show_bug.cgi?id=538744

External Source: FEDORA

Name: FEDORA-2009-12233

Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-November/msg01188.html

External Source: FEDORA

Name: FEDORA-2009-12218

Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-November/msg01172.html

External Source: CONFIRM

Name: https://www.isc.org/advisories/CVE2009-4022

Type: Advisory

Hyperlink:https://www.isc.org/advisories/CVE2009-4022

External Source: CONFIRM

Name: https://www.isc.org/advisories/CVE-2009-4022v6

Type: Advisory

Hyperlink:https://www.isc.org/advisories/CVE-2009-4022v6

External Source: CONFIRM

Name: https://issues.rpath.com/browse/RPL-3152

Hyperlink:https://issues.rpath.com/browse/RPL-3152

External Source: XF

Name: bind-dnssec-cache-poisoning(54416)

Hyperlink:http://xforce.iss.net/xforce/xfdb/54416

External Source: VUPEN

Name: ADV-2010-0622

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2010/0622

External Source: VUPEN

Name: ADV-2010-0528

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2010/0528

External Source: VUPEN

Name: ADV-2010-0176

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2010/0176

External Source: VUPEN

Name: ADV-2009-3335

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2009/3335

External Source: UBUNTU

Name: USN-888-1

Hyperlink:http://www.ubuntu.com/usn/USN-888-1

External Source: BID

Name: 37118

Hyperlink:http://www.securityfocus.com/bid/37118

External Source: REDHAT

Name: RHSA-2009:1620

Type: Advisory

Hyperlink:http://www.redhat.com/support/errata/RHSA-2009-1620.html

External Source: MLIST

Name: [oss-security] 20091124 Re: a new bind issue

Hyperlink:http://www.openwall.com/lists/oss-security/2009/11/24/8

External Source: MLIST

Name: [oss-security] 20091124 CVE request: BIND 9 bug involving DNSSEC and the additional section

Hyperlink:http://www.openwall.com/lists/oss-security/2009/11/24/2

External Source: MLIST

Name: [oss-security] 20091124 a new bind issue

Hyperlink:http://www.openwall.com/lists/oss-security/2009/11/24/1

External Source: MANDRIVA

Name: MDVSA-2009:304

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2009:304

External Source: AIXAPAR

Name: IZ71774

Hyperlink:http://www.ibm.com/support/docview.wss?uid=isg1IZ71774

External Source: AIXAPAR

Name: IZ71667

Hyperlink:http://www.ibm.com/support/docview.wss?uid=isg1IZ71667

External Source: AIXAPAR

Name: IZ68597

Hyperlink:http://www.ibm.com/support/docview.wss?uid=isg1IZ68597

External Source: CONFIRM

Name: http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0018

Hyperlink:http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0018

External Source: CONFIRM

Name: http://support.apple.com/kb/HT5002

Hyperlink:http://support.apple.com/kb/HT5002

External Source: SUNALERT

Name: 1021798

Hyperlink:http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021798.1-1

External Source: SUNALERT

Name: 1021660

Hyperlink:http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021660.1-1

External Source: SECUNIA

Name: 40730

Type: Advisory

Hyperlink:http://secunia.com/advisories/40730

External Source: SECUNIA

Name: 39334

Type: Advisory

Hyperlink:http://secunia.com/advisories/39334

External Source: SECUNIA

Name: 38834

Type: Advisory

Hyperlink:http://secunia.com/advisories/38834

External Source: SECUNIA

Name: 38794

Type: Advisory

Hyperlink:http://secunia.com/advisories/38794

External Source: SECUNIA

Name: 38240

Type: Advisory

Hyperlink:http://secunia.com/advisories/38240

External Source: SECUNIA

Name: 38219

Type: Advisory

Hyperlink:http://secunia.com/advisories/38219

External Source: SECUNIA

Name: 37491

Type: Advisory

Hyperlink:http://secunia.com/advisories/37491

External Source: SECUNIA

Name: 37426

Type: Advisory

Hyperlink:http://secunia.com/advisories/37426

External Source: OVAL

Name: oval:org.mitre.oval:def:7459

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:7459

External Source: OVAL

Name: oval:org.mitre.oval:def:7261

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:7261

External Source: OVAL

Name: oval:org.mitre.oval:def:11745

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11745

External Source: OVAL

Name: oval:org.mitre.oval:def:10821

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10821

External Source: OSVDB

Name: 60493

Hyperlink:http://osvdb.org/60493

External Source: MLIST

Name: [security-announce] 20100303 VMSA-2010-0004 ESX Service Console and vMA third party updates

Hyperlink:http://lists.vmware.com/pipermail/security-announce/2010/000082.html

External Source: APPLE

Name: APPLE-SA-2011-10-12-3

Hyperlink:http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html

External Source: CONFIRM

Name: http://aix.software.ibm.com/aix/efixes/security/bind9_advisory.asc

Hyperlink:http://aix.software.ibm.com/aix/efixes/security/bind9_advisory.asc

External Source: CONFIRM

Name: ftp://ftp.sco.com/pub/unixware7/714/security/p535243_uw7/p535243b.txt

Hyperlink:ftp://ftp.sco.com/pub/unixware7/714/security/p535243_uw7/p535243b.txt

References to Check Content

Identifier:oval:org.mitre.oval:def:7261

Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5

Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:7261

Identifier:oval:org.mitre.oval:def:11745

Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5

Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:11745

Identifier:oval:org.mitre.oval:def:7459

Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5

Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:7459

Identifier:oval:org.mitre.oval:def:10821

Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5

Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:10821

Vulnerable software and versions

Configuration 1

* cpe:/a:isc:bind:9.4.2

* cpe:/a:isc:bind:9.4.0a4

* cpe:/a:isc:bind:9.4.0a3

* cpe:/a:isc:bind:9.4.0a2

* cpe:/a:isc:bind:9.4.0a1

* cpe:/a:isc:bind:9.4.0

* cpe:/a:isc:bind:9.4.0:rc1

* cpe:/a:isc:bind:9.4.1

* cpe:/a:isc:bind:9.4.0b3

* cpe:/a:isc:bind:9.4.0b4

* cpe:/a:isc:bind:9.4.0b1

* cpe:/a:isc:bind:9.4.0b2

* cpe:/a:isc:bind:9.4.0a5

* cpe:/a:isc:bind:9.4.0a6

* cpe:/a:isc:bind:9.4.3:p2

* cpe:/a:isc:bind:9.4.3

* cpe:/a:isc:bind:9.4.3b3

* cpe:/a:isc:bind:9.4.3:rc1

* cpe:/a:isc:bind:9.4.3b1

* cpe:/a:isc:bind:9.4.3b2

* cpe:/a:isc:bind:9.5.0a4

* cpe:/a:isc:bind:9.5.0a5

* cpe:/a:isc:bind:9.5.0a2

* cpe:/a:isc:bind:9.5.0a3

* cpe:/a:isc:bind:9.5

* cpe:/a:isc:bind:9.5.0a1

* cpe:/a:isc:bind:9.5.1:rc2

* cpe:/a:isc:bind:9.5.0-p2

* cpe:/a:isc:bind:9.5.0-p2-w2

* cpe:/a:isc:bind:9.5.0-p2-w1

* cpe:/a:isc:bind:9.5.0-p1

* cpe:/a:isc:bind:9.5.0b1

* cpe:/a:isc:bind:9.5.0a7

* cpe:/a:isc:bind:9.5.0a6

* cpe:/a:isc:bind:9.5.0

* cpe:/a:isc:bind:9.5.1

* cpe:/a:isc:bind:9.5.0:rc1

* cpe:/a:isc:bind:9.5.0b3

* cpe:/a:isc:bind:9.5.0b2

* cpe:/a:isc:bind:9.5.1:rc1

* cpe:/a:isc:bind:9.5.1b3

* cpe:/a:isc:bind:9.5.1b2

* cpe:/a:isc:bind:9.5.1b1

* cpe:/a:isc:bind:9.6.1

* cpe:/a:isc:bind:9.6.0b1

* cpe:/a:isc:bind:9.6.0a1

* cpe:/a:isc:bind:9.6.0:p1

* cpe:/a:isc:bind:9.6.0:rc2

* cpe:/a:isc:bind:9.6.0:rc1

* cpe:/a:isc:bind:9.6.0

* cpe:/a:isc:bind:9.6.1:p1

* cpe:/a:isc:bind:9.0.0b2

* cpe:/a:isc:bind:9.0.0b1

* cpe:/a:isc:bind:9.0.0b4

* cpe:/a:isc:bind:9.0.0b3

* cpe:/a:isc:bind:9.0.0:rc1

* cpe:/a:isc:bind:9.0.0b5

* cpe:/a:isc:bind:9.0.0:rc4

* cpe:/a:isc:bind:9.0.0:rc5

* cpe:/a:isc:bind:9.0.0:rc2

* cpe:/a:isc:bind:9.0.1

* cpe:/a:isc:bind:9.0.0:rc3

* cpe:/a:isc:bind:9.0.1:rc2

* cpe:/a:isc:bind:9.0.0:rc6

* cpe:/a:isc:bind:9.0.1:rc1

* cpe:/a:isc:bind:9.1.3p2

* cpe:/a:isc:bind:9.1.2:rc1

* cpe:/a:isc:bind:9.1.1:rc7

* cpe:/a:isc:bind:9.1.1:rc6

* cpe:/a:isc:bind:9.1.3:rc3

* cpe:/a:isc:bind:9.1.3:rc2

* cpe:/a:isc:bind:9.1.3:rc1

* cpe:/a:isc:bind:9.1.3p3

* cpe:/a:isc:bind:9.1.0:rc1

* cpe:/a:isc:bind:9.1.1:rc1

* cpe:/a:isc:bind:9.1.0b2

* cpe:/a:isc:bind:9.1.0b3

* cpe:/a:isc:bind:9.1.1

* cpe:/a:isc:bind:9.1.1:rc4

* cpe:/a:isc:bind:9.1.1:rc5

* cpe:/a:isc:bind:9.1.2

* cpe:/a:isc:bind:9.1.1:rc2

* cpe:/a:isc:bind:9.1.3

* cpe:/a:isc:bind:9.1.1:rc3

* cpe:/a:isc:bind:9.1

* cpe:/a:isc:bind:9.1.0b1

* cpe:/a:isc:bind:9.2.9:rc1

* cpe:/a:isc:bind:9.2.9b1

* cpe:/a:isc:bind:9.2.8

* cpe:/a:isc:bind:9.2.8p1

* cpe:/a:isc:bind:9.2.7:rc3

* cpe:/a:isc:bind:9.2.4:rc7

* cpe:/a:isc:bind:9.2.4:rc8

* cpe:/a:isc:bind:9.2.5:beta2

* cpe:/a:isc:bind:9.2.5:rc1

* cpe:/a:isc:bind:9.2.4:rc3

* cpe:/a:isc:bind:9.2.4:rc4

* cpe:/a:isc:bind:9.2.4:rc5

* cpe:/a:isc:bind:9.2.4:rc6

* cpe:/a:isc:bind:9.2.6:rc1

* cpe:/a:isc:bind:9.2.7b1

* cpe:/a:isc:bind:9.2.7:rc1

* cpe:/a:isc:bind:9.2.7:rc2

* cpe:/a:isc:bind:9.2.6p1

* cpe:/a:isc:bind:9.2.6p2

* cpe:/a:isc:bind:9.2.6b1

* cpe:/a:isc:bind:9.2.6b2

* cpe:/a:isc:bind:9.2.0:rc8

* cpe:/a:isc:bind:9.2.0:rc7

* cpe:/a:isc:bind:9.2.1:rc1

* cpe:/a:isc:bind:9.2.0:rc9

* cpe:/a:isc:bind:9.2.0:rc4

* cpe:/a:isc:bind:9.2.0:rc3

* cpe:/a:isc:bind:9.2.0:rc6

* cpe:/a:isc:bind:9.2.0:rc5

* cpe:/a:isc:bind:9.2.3:rc3

* cpe:/a:isc:bind:9.2.3:rc2

* cpe:/a:isc:bind:9.2.4:rc2

* cpe:/a:isc:bind:9.2.3:rc4

* cpe:/a:isc:bind:9.2.2:p2

* cpe:/a:isc:bind:9.2.1:rc2

* cpe:/a:isc:bind:9.2.3:rc1

* cpe:/a:isc:bind:9.2.2:rc1

* cpe:/a:isc:bind:9.2.0b1

* cpe:/a:isc:bind:9.2.0a3

* cpe:/a:isc:bind:9.2.0a2

* cpe:/a:isc:bind:9.2.0a1

* cpe:/a:isc:bind:9.2.0:rc2

* cpe:/a:isc:bind:9.2.0:rc10

* cpe:/a:isc:bind:9.2.0:rc1

* cpe:/a:isc:bind:9.2.0b2

* cpe:/a:isc:bind:9.2.0

* cpe:/a:isc:bind:9.2.1

* cpe:/a:isc:bind:9.2.2

* cpe:/a:isc:bind:9.2.2:p3

* cpe:/a:isc:bind:9.2

* cpe:/a:isc:bind:9.2.7

* cpe:/a:isc:bind:9.2.6

* cpe:/a:isc:bind:9.2.5

* cpe:/a:isc:bind:9.2.4

* cpe:/a:isc:bind:9.2.3

* cpe:/a:isc:bind:9.2.9

* cpe:/a:isc:bind:9.3.3:rc3

* cpe:/a:isc:bind:9.3.4p1

* cpe:/a:isc:bind:9.3.3:rc1

* cpe:/a:isc:bind:9.3.3:rc2

* cpe:/a:isc:bind:9.3.2:rc1

* cpe:/a:isc:bind:9.3.3b1

* cpe:/a:isc:bind:9.3.2b1

* cpe:/a:isc:bind:9.3.2b2

* cpe:/a:isc:bind:9.3.5:rc1

* cpe:/a:isc:bind:9.3.5:rc2

* cpe:/a:isc:bind:9.3.5

* cpe:/a:isc:bind:9.3.5b1

* cpe:/a:isc:bind:9.3.5-p2-w2

* cpe:/a:isc:bind:9.3.5-p2

* cpe:/a:isc:bind:9.3.4

* cpe:/a:isc:bind:9.3.5-p2-w1

* cpe:/a:isc:bind:9.3.0:beta4

* cpe:/a:isc:bind:9.3.0:beta3

* cpe:/a:isc:bind:9.3.0:beta2

* cpe:/a:isc:bind:9.3.2p2

* cpe:/a:isc:bind:9.3.2p1

* cpe:/a:isc:bind:9.3.1:rc1

* cpe:/a:isc:bind:9.3.1:beta2

* cpe:/a:isc:bind:9.3.0:rc4

* cpe:/a:isc:bind:9.3.0:rc3

* cpe:/a:isc:bind:9.3.0:rc2

* cpe:/a:isc:bind:9.3.0:rc1

* cpe:/a:isc:bind:9.3.3

* cpe:/a:isc:bind:9.3.2

* cpe:/a:isc:bind:9.3.1

* cpe:/a:isc:bind:9.3.0

* cpe:/a:isc:bind:9.3

* cpe:/a:isc:bind:9.3.6

* cpe:/a:isc:bind:9.3.6p1

* cpe:/a:isc:bind:9.3.6:rc1

* cpe:/a:isc:bind:9.3.6b1

* Denotes Vulnerable Software

Technical Details

Vulnerability Type (View All)

Insufficient Information (NVD-CWE-noinfo)

CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4022