JVN/CVE Demo: Cveinfos

CVE

Id: 23850
CVE No.: CVE-2007-0493
Status: Candidate
Description: Use-after-free vulnerability in ISC BIND 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 (Bind Forum only) allows remote attackers to cause a denial of service (named daemon crash) via unspecified vectors that cause named to "dereference a freed fetch context."
Phase: Assigned (20070125)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
232186	23850	CVE-2007-0493	BUGTRAQ:20070125 BIND remote exploit (low severity) [Fwd: Internet Systems Consortium Security Advisory.]	View
232187	23850	CVE-2007-0493	URL:http://www.securityfocus.com/archive/1/archive/1/458066/100/0/threaded	View
232188	23850	CVE-2007-0493	FULLDISC:20070125 BIND remote exploit (low severity) [Fwd: Internet Systems Consortium Security Advisory.]	View
232189	23850	CVE-2007-0493	URL:http://lists.grok.org.uk/pipermail/full-disclosure/2007-January/052018.html	View
232190	23850	CVE-2007-0493	MLIST:[bind-announce] 20070125 Internet Systems Consortium Security Advisory.	View
232191	23850	CVE-2007-0493	URL:http://marc.info/?l=bind-announce&m=116968519321296&w=2	View
232192	23850	CVE-2007-0493	CONFIRM:http://www.isc.org/index.pl?/sw/bind/bind-security.php	View
232193	23850	CVE-2007-0493	CONFIRM:http://www.isc.org/index.pl?/sw/bind/view/?release=9.2.8	View
232194	23850	CVE-2007-0493	CONFIRM:http://www.isc.org/index.pl?/sw/bind/view/?release=9.3.4	View
232195	23850	CVE-2007-0493	CONFIRM:https://issues.rpath.com/browse/RPL-989	View
232196	23850	CVE-2007-0493	CONFIRM:http://docs.info.apple.com/article.html?artnum=305530	View
232197	23850	CVE-2007-0493	CONFIRM:https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04952488	View
232198	23850	CVE-2007-0493	APPLE:APPLE-SA-2007-05-24	View
232199	23850	CVE-2007-0493	URL:http://lists.apple.com/archives/security-announce/2007/May/msg00004.html	View
232200	23850	CVE-2007-0493	FEDORA:FEDORA-2007-147	View
232201	23850	CVE-2007-0493	URL:http://fedoranews.org/cms/node/2507	View
232202	23850	CVE-2007-0493	FEDORA:FEDORA-2007-164	View
232203	23850	CVE-2007-0493	URL:http://fedoranews.org/cms/node/2537	View
232204	23850	CVE-2007-0493	FREEBSD:FreeBSD-SA-07:02	View
232205	23850	CVE-2007-0493	URL:http://security.freebsd.org/advisories/FreeBSD-SA-07:02.bind.asc	View
232206	23850	CVE-2007-0493	GENTOO:GLSA-200702-06	View
232207	23850	CVE-2007-0493	URL:http://security.gentoo.org/glsa/glsa-200702-06.xml	View
232208	23850	CVE-2007-0493	HP:HPSBTU02207	View
232209	23850	CVE-2007-0493	URL:https://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00967144	View
232210	23850	CVE-2007-0493	HP:SSRT061213	View
232211	23850	CVE-2007-0493	URL:https://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00967144	View
232212	23850	CVE-2007-0493	HP:SSRT061239	View
232213	23850	CVE-2007-0493	URL:https://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00967144	View
232214	23850	CVE-2007-0493	HP:SSRT071304	View
232215	23850	CVE-2007-0493	URL:https://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00967144	View
232216	23850	CVE-2007-0493	HP:HPSBUX02219	View
232217	23850	CVE-2007-0493	URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01070495	View
232218	23850	CVE-2007-0493	HP:SSRT061273	View
232219	23850	CVE-2007-0493	URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01070495	View
232220	23850	CVE-2007-0493	MANDRIVA:MDKSA-2007:030	View
232221	23850	CVE-2007-0493	URL:http://www.mandriva.com/security/advisories?name=MDKSA-2007:030	View
232222	23850	CVE-2007-0493	NETBSD:NetBSD-SA2007-003	View
232223	23850	CVE-2007-0493	URL:http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2007-003.txt.asc	View
232224	23850	CVE-2007-0493	OPENPKG:OpenPKG-SA-2007.007	View
232225	23850	CVE-2007-0493	URL:http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.007.html	View
232226	23850	CVE-2007-0493	REDHAT:RHSA-2007:0057	View
232227	23850	CVE-2007-0493	URL:http://www.redhat.com/support/errata/RHSA-2007-0057.html	View
232228	23850	CVE-2007-0493	SLACKWARE:SSA:2007-026-01	View
232229	23850	CVE-2007-0493	URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.494157	View
232230	23850	CVE-2007-0493	SUSE:SUSE-SA:2007:014	View
232231	23850	CVE-2007-0493	URL:http://lists.suse.com/archive/suse-security-announce/2007-Jan/0016.html	View
232232	23850	CVE-2007-0493	TRUSTIX:2007-0005	View
232233	23850	CVE-2007-0493	URL:http://www.trustix.org/errata/2007/0005	View
232234	23850	CVE-2007-0493	UBUNTU:USN-418-1	View
232235	23850	CVE-2007-0493	URL:http://www.ubuntu.com/usn/usn-418-1	View
232236	23850	CVE-2007-0493	BID:22229	View
232237	23850	CVE-2007-0493	URL:http://www.securityfocus.com/bid/22229	View
232238	23850	CVE-2007-0493	OVAL:oval:org.mitre.oval:def:9614	View
232239	23850	CVE-2007-0493	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9614	View
232240	23850	CVE-2007-0493	VUPEN:ADV-2007-0349	View
232241	23850	CVE-2007-0493	URL:http://www.vupen.com/english/advisories/2007/0349	View
232242	23850	CVE-2007-0493	VUPEN:ADV-2007-1401	View
232243	23850	CVE-2007-0493	URL:http://www.vupen.com/english/advisories/2007/1401	View
232244	23850	CVE-2007-0493	VUPEN:ADV-2007-1939	View
232245	23850	CVE-2007-0493	URL:http://www.vupen.com/english/advisories/2007/1939	View
232246	23850	CVE-2007-0493	VUPEN:ADV-2007-2163	View
232247	23850	CVE-2007-0493	URL:http://www.vupen.com/english/advisories/2007/2163	View
232248	23850	CVE-2007-0493	VUPEN:ADV-2007-2315	View
232249	23850	CVE-2007-0493	URL:http://www.vupen.com/english/advisories/2007/2315	View
232250	23850	CVE-2007-0493	SECTRACK:1017561	View
232251	23850	CVE-2007-0493	URL:http://securitytracker.com/id?1017561	View
232252	23850	CVE-2007-0493	SECUNIA:23904	View
232253	23850	CVE-2007-0493	URL:http://secunia.com/advisories/23904	View
232254	23850	CVE-2007-0493	SECUNIA:23972	View
232255	23850	CVE-2007-0493	URL:http://secunia.com/advisories/23972	View
232256	23850	CVE-2007-0493	SECUNIA:23924	View
232257	23850	CVE-2007-0493	URL:http://secunia.com/advisories/23924	View
232258	23850	CVE-2007-0493	SECUNIA:23943	View
232259	23850	CVE-2007-0493	URL:http://secunia.com/advisories/23943	View
232260	23850	CVE-2007-0493	SECUNIA:23974	View
232261	23850	CVE-2007-0493	URL:http://secunia.com/advisories/23974	View
232262	23850	CVE-2007-0493	SECUNIA:23977	View
232263	23850	CVE-2007-0493	URL:http://secunia.com/advisories/23977	View
232264	23850	CVE-2007-0493	SECUNIA:24054	View
232265	23850	CVE-2007-0493	URL:http://secunia.com/advisories/24054	View
232266	23850	CVE-2007-0493	SECUNIA:24014	View
232267	23850	CVE-2007-0493	URL:http://secunia.com/advisories/24014	View
232268	23850	CVE-2007-0493	SECUNIA:24048	View
232269	23850	CVE-2007-0493	URL:http://secunia.com/advisories/24048	View
232270	23850	CVE-2007-0493	SECUNIA:24129	View
232271	23850	CVE-2007-0493	URL:http://secunia.com/advisories/24129	View
232272	23850	CVE-2007-0493	SECUNIA:24203	View
232273	23850	CVE-2007-0493	URL:http://secunia.com/advisories/24203	View
232274	23850	CVE-2007-0493	SECUNIA:24950	View
232275	23850	CVE-2007-0493	URL:http://secunia.com/advisories/24950	View
232276	23850	CVE-2007-0493	SECUNIA:24930	View
232277	23850	CVE-2007-0493	URL:http://secunia.com/advisories/24930	View
232278	23850	CVE-2007-0493	SECUNIA:25402	View
232279	23850	CVE-2007-0493	URL:http://secunia.com/advisories/25402	View
232280	23850	CVE-2007-0493	SECUNIA:25649	View

Related JVN

Id	JVN No.	Title	Summary	CVE No.	CVE Id	CVSS_v2	CVSS_v3	JVN URL	Actions
56305	JVNDB-2007-004997	PhpSherpa の include/config.inc.php における PHP リモートファイルインクルージョンの脆弱性	PhpSherpa の include/config.inc.php には、PHP リモートファイルインクルージョンの脆弱性が存在します。	CVE-2007-0495	23850	10		http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-004997.html	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.41 MB
View render complete	2.97 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.63
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	438.15
Event: Controller.beforeRender	4.90
» Processing toolbar data	4.80
Rendering View	44.24
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	43.05
» Event: View.afterRender	0.03
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.67
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.10
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/23850
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/23850
Remote Port	49674
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.40
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.95.84
Http Via	1.1 squid-proxy-5b5d847c96-c2bbs (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http Cookie	advanced-frontend=ah0250js2lvjilq045sjrs3s66
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	216.73.216.40
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.40
Unique Id	aEaPPPSWO5MIThzSO2p4XgAAATw
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	216.73.216.40
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.40
Redirect Unique Id	aEaPPPSWO5MIThzSO2p4XgAAATw
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	216.73.216.40
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.40
Redirect Redirect Unique Id	aEaPPPSWO5MIThzSO2p4XgAAATw
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1749454652.7336
Request Time	1749454652

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files