ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Bind | Isc | 8.2.3 (including) | 8.2.3 (including) |
| Bind | Isc | 8.2.4 (including) | 8.2.4 (including) |
| Bind | Isc | 8.2.5 (including) | 8.2.5 (including) |
| Bind | Isc | 8.2.6 (including) | 8.2.6 (including) |
| Bind | Isc | 8.2.7 (including) | 8.2.7 (including) |
| Bind | Isc | 8.3.0 (including) | 8.3.0 (including) |
| Bind | Isc | 8.3.1 (including) | 8.3.1 (including) |
| Bind | Isc | 8.3.2 (including) | 8.3.2 (including) |
| Bind | Isc | 8.3.3 (including) | 8.3.3 (including) |
| Bind | Isc | 8.3.4 (including) | 8.3.4 (including) |
| Bind | Isc | 8.3.5 (including) | 8.3.5 (including) |
| Bind | Isc | 8.3.6 (including) | 8.3.6 (including) |
| Bind | Isc | 8.4 (including) | 8.4 (including) |
| Bind | Isc | 8.4.1 (including) | 8.4.1 (including) |
| Namesurfer | Nixu | standard_3.0.1 (including) | standard_3.0.1 (including) |
| Namesurfer | Nixu | suite_3.0.1 (including) | suite_3.0.1 (including) |