CVE-2009-4022

Description

Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P4, 9.5 before 9.5.2-P1, 9.6 before 9.6.1-P2, and 9.7 beta before 9.7.0b3, with DNSSEC validation enabled and checking disabled (CD), allows remote attackers to conduct DNS cache poisoning attacks by receiving a recursive client query and sending a response that contains an Additional section with crafted data, which is not properly handled when the response is processed "at the same time as requesting DNSSEC records (DO)," aka Bug 20438.

CVSS Metrics

• v2.0•LOW•Score: 2.6AV:N/AC:H/Au:N/C:N/I:P/A:N

EPSS Trends

Current EPSS score: 20.04%• Percentile: 96%

Affected Systems

• isc•bind

  9.0 | 9.0.0:rc1 | 9.0.0:rc2 | 9.0.0:rc3 | 9.0.0:rc4 | 9.0.0:rc5 | 9.0.0:rc6 | 9.0.1 | 9.0.1:rc1 | 9.0.1:rc2 | 9.1 | 9.1.0:rc1 | 9.1.1 | 9.1.1:rc1 | 9.1.1:rc2 | 9.1.1:rc3 | 9.1.1:rc4 | 9.1.1:rc5 | 9.1.1:rc6 | 9.1.1:rc7 | 9.1.2 | 9.1.2:rc1 | 9.1.3 | 9.1.3:rc1 | 9.1.3:rc2 | 9.1.3:rc3 | 9.2 | 9.2.0 | 9.2.0:a1 | 9.2.0:a2 | 9.2.0:a3 | 9.2.0:b1 | 9.2.0:b2 | 9.2.0:rc1 | 9.2.0:rc10 | 9.2.0:rc2 | 9.2.0:rc3 | 9.2.0:rc4 | 9.2.0:rc5 | 9.2.0:rc6 | 9.2.0:rc7 | 9.2.0:rc8 | 9.2.0:rc9 | 9.2.1 | 9.2.1:rc1 | 9.2.1:rc2 | 9.2.2 | 9.2.2:p2 | 9.2.2:p3 | 9.2.2:rc1 | 9.2.3 | 9.2.3:rc1 | 9.2.3:rc2 | 9.2.3:rc3 | 9.2.3:rc4 | 9.2.4 | 9.2.4:rc2 | 9.2.4:rc3 | 9.2.4:rc4 | 9.2.4:rc5 | 9.2.4:rc6 | 9.2.4:rc7 | 9.2.4:rc8 | 9.2.5 | 9.2.5:b2 | 9.2.5:rc1 | 9.2.6 | 9.2.6:rc1 | 9.2.7 | 9.2.7:rc1 | 9.2.7:rc2 | 9.2.7:rc3 | 9.2.8 | 9.2.9 | 9.2.9:rc1 | 9.3 | 9.3.0 | 9.3.0:b2 | 9.3.0:b3 | 9.3.0:b4 | 9.3.0:rc1 | 9.3.0:rc2 | 9.3.0:rc3 | 9.3.0:rc4 | 9.3.1 | 9.3.1:b2 | 9.3.1:rc1 | 9.3.2 | 9.3.2:rc1 | 9.3.3 | 9.3.3:rc1 | 9.3.3:rc2 | 9.3.3:rc3 | 9.3.4 | 9.3.5 | 9.3.5:rc1 | 9.3.5:rc2 | 9.3.6 | 9.3.6:rc1 | 9.4.0 | 9.4.0:a1 | 9.4.0:a2 | 9.4.0:a3 | 9.4.0:a4 | 9.4.0:a5 | 9.4.0:a6 | 9.4.0:b1 | 9.4.0:b2 | 9.4.0:b3 | 9.4.0:b4 | 9.4.0:rc1 | 9.4.0:rc2 | 9.4.1 | 9.4.2 | 9.4.2:rc1 | 9.4.2:rc2 | 9.4.3 | 9.4.3:b1 | 9.4.3:b2 | 9.4.3:b3 | 9.4.3:p1 | 9.4.3:p2 | 9.4.3:p3 | 9.4.3:rc1 | 9.5.0 | 9.5.0:a1 | 9.5.0:a2 | 9.5.0:a3 | 9.5.0:a4 | 9.5.0:a5 | 9.5.0:a6 | 9.5.0:a7 | 9.5.0:b1 | 9.5.0:b2 | 9.5.0:b3 | 9.5.0:p1 | 9.5.0:p2 | 9.5.0:p2_w1 | 9.5.0:p2_w2 | 9.5.0:rc1 | 9.5.1 | 9.5.1:b1 | 9.5.1:b2 | 9.5.1:b3 | 9.5.1:rc1 | 9.5.1:rc2 | 9.5.2 | 9.5.2:b1 | 9.5.2:rc1 | 9.6.0 | 9.6.0:a1 | 9.6.0:b1 | 9.6.0:p1 | 9.6.0:rc1 | 9.6.0:rc2 | 9.6.1 | 9.6.1:b1 | 9.6.1:p1 | 9.6.1:rc1 | 9.7.0 | 9.7.0:a1 | 9.7.0:a2 | 9.7.0:a3 | 9.7.0:b1 | 9.7.0:b2 | 9.7.0:b3 | 9.7.0:p1 | 9.7.0:rc1 | 9.7.0:rc2

References (44)

• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7261
• http://secunia.com/advisories/40730
• http://secunia.com/advisories/37426
• http://aix.software.ibm.com/aix/efixes/security/bind9_advisory.asc
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10821
• http://www.vupen.com/english/advisories/2010/0176
• https://exchange.xforce.ibmcloud.com/vulnerabilities/54416
• https://bugzilla.redhat.com/show_bug.cgi?id=538744
• http://www.securityfocus.com/bid/37118
• http://secunia.com/advisories/38794
• http://lists.vmware.com/pipermail/security-announce/2010/000082.html
• http://osvdb.org/60493
• https://www.isc.org/advisories/CVE-2009-4022v6
• http://secunia.com/advisories/38240
• https://www.redhat.com/archives/fedora-package-announce/2009-November/msg01172.html
• http://secunia.com/advisories/37491
• http://www.ubuntu.com/usn/USN-888-1
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7459
• http://www.openwall.com/lists/oss-security/2009/11/24/8
• http://www.kb.cert.org/vuls/id/418861
• https://www.isc.org/advisories/CVE2009-4022
• http://www.ibm.com/support/docview.wss?uid=isg1IZ71667
• http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021798.1-1
• http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
• http://secunia.com/advisories/39334
• http://www.openwall.com/lists/oss-security/2009/11/24/2
• http://www.mandriva.com/security/advisories?name=MDVSA-2009:304
• http://www.vupen.com/english/advisories/2009/3335
• http://www.vupen.com/english/advisories/2010/0622
• https://issues.rpath.com/browse/RPL-3152
• http://www.ibm.com/support/docview.wss?uid=isg1IZ68597
• http://secunia.com/advisories/38834
• http://secunia.com/advisories/38219
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11745
• http://www.ibm.com/support/docview.wss?uid=isg1IZ71774
• https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04952488
• https://www.redhat.com/archives/fedora-package-announce/2009-November/msg01188.html
• http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0018
• http://support.apple.com/kb/HT5002
• ftp://ftp.sco.com/pub/unixware7/714/security/p535243_uw7/p535243b.txt
• http://www.redhat.com/support/errata/RHSA-2009-1620.html
• http://www.openwall.com/lists/oss-security/2009/11/24/1
• http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021660.1-1
• http://www.vupen.com/english/advisories/2010/0528