CVE

Id
4423  
CVE No.
CVE-2002-0029  
Status
Candidate  
Description
Buffer overflows in the DNS stub resolver library in ISC BIND 4.9.2 through 4.9.10, and other derived libraries such as BSD libc and GNU glibc, allow remote attackers to execute arbitrary code via DNS server responses that trigger the overflow in the (1) getnetbyname, or (2) getnetbyaddr functions, aka "LIBRESOLV: buffer overrun" and a different vulnerability than CVE-2002-0684.  
Phase
Modified (20060523)  
Votes
ACCEPT(3) Baker, Cole, Frech | MODIFY(1) Cox | NOOP(2) Christey, Wall  
Comments
CHANGE> [Cox changed vote from REVIEWING to MODIFY] | Cox> ADDREF: REDHAT: http://rhn.redhat.com/cve/CVE-2002-0029.html | Christey> the redhat reference is REDHAT:RHSA-2004:383  

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
21304 4423 CVE-2002-0029 CONFIRM:http://www.isc.org/products/BIND/bind-security.html  View
21305 4423 CVE-2002-0029 CERT:CA-2002-31  View
21306 4423 CVE-2002-0029 URL:http://www.cert.org/advisories/CA-2002-31.html  View
21307 4423 CVE-2002-0029 CERT-VN:VU#844360  View
21308 4423 CVE-2002-0029 URL:http://www.kb.cert.org/vuls/id/844360  View
21309 4423 CVE-2002-0029 APPLE:2002-11-21  View
21310 4423 CVE-2002-0029 URL:http://lists.apple.com/archives/Security-announce/2002/Nov/msg00000.html  View
21311 4423 CVE-2002-0029 NETBSD:NetBSD-SA2002-028  View
21312 4423 CVE-2002-0029 URL:ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2002-028.txt.asc  View
21313 4423 CVE-2002-0029 SGI:20021201-01-P  View
21314 4423 CVE-2002-0029 URL:ftp://patches.sgi.com/support/free/security/advisories/20021201-01-P  View
21315 4423 CVE-2002-0029 XF:bind-dns-libresolv-bo(10624)  View
21316 4423 CVE-2002-0029 URL:http://www.iss.net/security_center/static/10624.php  View
21317 4423 CVE-2002-0029 BID:6186  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
63950 JVNDB-2002-000277 BIND の DNS リゾルバライブラリにおけるバッファオーバフローの脆弱性 BIND において、含まれている DNS スタブリゾルバライブラリはネットワーク名やアドレス解決のリクエストに対する DNS レスポンスを受け取る際に十分な境界チェックを行わないため、バッファオーバーフローが発生する脆弱性が存在します。 CVE-2002-0029 4423 7.5 http://jvndb.jvn.jp/ja/contents/2002/JVNDB-2002-000277.html  View