VDB

CVE-2003-0914

CVE-2003-0914 PUBLISHED CVSS 4.300000190734863 MEDIUM

ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value.

EPSS 29.90% · 96.7th percentile

Risk Scores

CVSS 2.0
4.300000190734863
EPSS Score
29.90%
96.7th percentile

Affected Products

VendorProductVersions
iscbind8.2.4, 8.2.5, 8.2.6
compaqtru645.1a, 5.1a_pk2_bl2, 5.1a_pk3_bl3
ibmaix*
freebsdfreebsd4.7, 4.4, 4.6
hphp-ux11.11, 11.00
nixunamesurfersuite_3.0.1, standard_3.0.1
sunsolaris8.0, 9.0, 9.0
netbsdnetbsdcurrent, 1.6.1, 1.6
scounixware7.1.1
n/an/an/a
sunsunos5.7, 5.8

Timeline

  • Dec 2, 2003 CVE Published
  • Feb 4, 2022 EPSS Score
  • Mar 29, 2022 EPSS Score
  • Jul 12, 2022 EPSS Score
  • Sep 4, 2022 EPSS Score
  • Oct 26, 2022 EPSS Score
  • Feb 9, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 3, 2023 EPSS Score
  • Jul 17, 2023 EPSS Score
  • Sep 8, 2023 EPSS Score
  • Oct 30, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›