// For flags

CVE-2008-0122

libbind off-by-one buffer overflow

Severity Score

9.8
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Off-by-one error in the inet_network function in libbind in ISC BIND 9.4.2 and earlier, as used in libc in FreeBSD 6.2 through 7.0-PRERELEASE, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted input that triggers memory corruption.

Error por un paso en la función inet_network en libbind en ISC BIND 9.4.2 y versiones anteriores, como se utiliza en libc en FreeBSD 6.2 hasta la versión 7.0-PRERELEASE, permite a atacantes dependientes del contexto provocar una denegación de servicio (caída) y posiblemente ejecutar código arbitrario a través de entradas manipuladas que desencadenan corrupción de memoria.

Potential security vulnerabilities have been identified with the OpenVMS TCPIP Bind Services and OpenVMS TCPIP IPC Services for OpenVMS. These vulnerabilities could be exploited remotely resulting in execution of code with the privileges of Bind, disclosure of information, or cause a Denial of Service (DoS). Revision 1 of this advisory.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2008-01-07 CVE Reserved
  • 2008-01-16 CVE Published
  • 2024-08-07 CVE Updated
  • 2025-04-01 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-189: Numeric Errors
  • CWE-193: Off-by-one Error
CAPEC
References (29)
URL Tag Source
http://secunia.com/advisories/28367 Third Party Advisory
http://secunia.com/advisories/28429 Third Party Advisory
http://secunia.com/advisories/28487 Third Party Advisory
http://secunia.com/advisories/28579 Third Party Advisory
http://secunia.com/advisories/29161 Third Party Advisory
http://secunia.com/advisories/29323 Third Party Advisory
http://secunia.com/advisories/30313 Third Party Advisory
http://secunia.com/advisories/30538 Third Party Advisory
http://secunia.com/advisories/30718 Third Party Advisory
http://support.avaya.com/elmodocs2/security/ASA-2008-244.htm Third Party Advisory
http://www.kb.cert.org/vuls/id/203611 Third Party Advisory
http://www.securityfocus.com/archive/1/487000/100/0/threaded Mailing List
http://www.securitytracker.com/id?1019189 Third Party Advisory
http://www14.software.ibm.com/webapp/set2/subscriptions/ijhifoeblist?mode=7&heading=AIX61&path=/200802/SECURITY/20080227/datafile123640&label=AIX%20libc%20inet_network%20buffer%20overflow Third Party Advisory
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4167 Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/39670 Third Party Advisory
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04952488 Third Party Advisory
https://issues.rpath.com/browse/RPL-2169 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10190 Signature
URL Date SRC
URL Date SRC
http://security.freebsd.org/advisories/FreeBSD-SA-08:02.libc.asc 2019-08-01
http://www.securityfocus.com/bid/27283 2019-08-01
URL Date SRC
http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00004.html 2019-08-01
http://sunsolve.sun.com/search/document.do?assetkey=1-26-238493-1 2019-08-01
http://www.isc.org/index.pl?/sw/bind/bind-security.php 2019-08-01
http://www.redhat.com/support/errata/RHSA-2008-0300.html 2019-08-01
https://bugzilla.redhat.com/show_bug.cgi?id=429149 2008-05-20
https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00781.html 2019-08-01
https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00782.html 2019-08-01
https://access.redhat.com/security/cve/CVE-2008-0122 2008-05-20
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.2
Search vendor "Freebsd" for product "Freebsd" and version "6.2"
-
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.2
Search vendor "Freebsd" for product "Freebsd" and version "6.2"
p1
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.2
Search vendor "Freebsd" for product "Freebsd" and version "6.2"
p10
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.2
Search vendor "Freebsd" for product "Freebsd" and version "6.2"
p11
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.2
Search vendor "Freebsd" for product "Freebsd" and version "6.2"
p12
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.2
Search vendor "Freebsd" for product "Freebsd" and version "6.2"
p4
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.2
Search vendor "Freebsd" for product "Freebsd" and version "6.2"
p5
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.2
Search vendor "Freebsd" for product "Freebsd" and version "6.2"
p6
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.2
Search vendor "Freebsd" for product "Freebsd" and version "6.2"
p7
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.2
Search vendor "Freebsd" for product "Freebsd" and version "6.2"
p8
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.2
Search vendor "Freebsd" for product "Freebsd" and version "6.2"
p9
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.2
Search vendor "Freebsd" for product "Freebsd" and version "6.2"
rc1
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.2
Search vendor "Freebsd" for product "Freebsd" and version "6.2"
rc2
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.3
Search vendor "Freebsd" for product "Freebsd" and version "6.3"
-
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.3
Search vendor "Freebsd" for product "Freebsd" and version "6.3"
p1
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.3
Search vendor "Freebsd" for product "Freebsd" and version "6.3"
p10
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.3
Search vendor "Freebsd" for product "Freebsd" and version "6.3"
p11
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.3
Search vendor "Freebsd" for product "Freebsd" and version "6.3"
p12
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.3
Search vendor "Freebsd" for product "Freebsd" and version "6.3"
p13
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.3
Search vendor "Freebsd" for product "Freebsd" and version "6.3"
p14
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.3
Search vendor "Freebsd" for product "Freebsd" and version "6.3"
p15
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.3
Search vendor "Freebsd" for product "Freebsd" and version "6.3"
p2
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.3
Search vendor "Freebsd" for product "Freebsd" and version "6.3"
p3
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.3
Search vendor "Freebsd" for product "Freebsd" and version "6.3"
p4
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.3
Search vendor "Freebsd" for product "Freebsd" and version "6.3"
p5
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.3
Search vendor "Freebsd" for product "Freebsd" and version "6.3"
p6
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.3
Search vendor "Freebsd" for product "Freebsd" and version "6.3"
p7
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.3
Search vendor "Freebsd" for product "Freebsd" and version "6.3"
p8
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.3
Search vendor "Freebsd" for product "Freebsd" and version "6.3"
p9
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.3
Search vendor "Freebsd" for product "Freebsd" and version "6.3"
rc2
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.4
Search vendor "Freebsd" for product "Freebsd" and version "6.4"
-
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.4
Search vendor "Freebsd" for product "Freebsd" and version "6.4"
p1
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.4
Search vendor "Freebsd" for product "Freebsd" and version "6.4"
p10
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.4
Search vendor "Freebsd" for product "Freebsd" and version "6.4"
p11
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.4
Search vendor "Freebsd" for product "Freebsd" and version "6.4"
p2
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.4
Search vendor "Freebsd" for product "Freebsd" and version "6.4"
p3
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.4
Search vendor "Freebsd" for product "Freebsd" and version "6.4"
p4
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.4
Search vendor "Freebsd" for product "Freebsd" and version "6.4"
p5
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.4
Search vendor "Freebsd" for product "Freebsd" and version "6.4"
p6
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.4
Search vendor "Freebsd" for product "Freebsd" and version "6.4"
p7
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.4
Search vendor "Freebsd" for product "Freebsd" and version "6.4"
p8
Safe
Isc
Search vendor "Isc"
 Bind
Search vendor "Isc" for product "Bind"
 <= 9.4.2
Search vendor "Isc" for product "Bind" and version " <= 9.4.2"
-
Affected
in Freebsd
Search vendor "Freebsd"
 Freebsd
Search vendor "Freebsd" for product "Freebsd"
 6.4
Search vendor "Freebsd" for product "Freebsd" and version "6.4"
p9
Safe