admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2017/CVE-2017-3143.md
0xMarcio dd6a10065d Update CVE sources 2024-08-06 19:19
2024-08-06 19:19:10 +00:00

40 lines
2.5 KiB
Markdown
Raw Blame History

### [CVE-2017-3143](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3143)
![](https://img.shields.io/static/v1?label=Product&message=BIND%209&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20server%20that%20relies%20solely%20on%20TSIG%20keys%20with%20no%20other%20address-based%20ACL%20protection%20could%20be%20vulnerable%20to%20malicious%20zone%20content%20manipulation%20using%20this%20technique.%0A%0ANote%20that%20the%20local%20update%20policy%20(configured%20with%20%22update-policy%20local%3B%22%20in%20named.conf)%20implicitly%20defines%20a%20key%20with%20a%20known%20key%20name%20(local-ddns)%20and%20default%20algorithm%20and%20no%20IP-based%20access%20controls%20on%20the%20zone%20updates.%20%20In%20conjunction%20with%20this%20failure%20in%20TSIG%20verification%2C%20%22update-policy%20local%22%20is%20potentially%20very%20dangerous.&color=brighgreen)
### Description
An attacker who is able to send and receive messages to an authoritative DNS server and who has knowledge of a valid TSIG key name for the zone and service being targeted may be able to manipulate BIND into accepting an unauthorized dynamic update. Affects BIND 9.4.0->9.8.8, 9.9.0->9.9.10-P1, 9.10.0->9.10.5-P1, 9.11.0->9.11.1-P1, 9.9.3-S1->9.9.10-S2, 9.10.5-S1->9.10.5-S2.
### POC
#### Reference
No PoCs from references.
#### Github
- https://github.com/ALTinners/bind9
- https://github.com/ARPSyndicate/cvemon
- https://github.com/AndrewLipscomb/bind9
- https://github.com/DButter/whitehat_public
- https://github.com/Dokukin1/Metasploitable
- https://github.com/Iknowmyname/Nmap-Scans-M2
- https://github.com/Mehedi-Babu/Vulnerability_research
- https://github.com/NikulinMS/13-01-hw
- https://github.com/Zhivarev/13-01-hw
- https://github.com/balabit-deps/balabit-os-7-bind9
- https://github.com/balabit-deps/balabit-os-8-bind9-libs
- https://github.com/balabit-deps/balabit-os-9-bind9-libs
- https://github.com/dkiser/vulners-yum-scanner
- https://github.com/ducducuc111/Awesome-Vulnerability-Research
- https://github.com/gladiopeace/awesome-stars
- https://github.com/pexip/os-bind9
- https://github.com/pexip/os-bind9-libs
- https://github.com/psmedley/bind-os2
- https://github.com/saaph/CVE-2017-3143
- https://github.com/securitychampions/Awesome-Vulnerability-Research
- https://github.com/sergey-pronin/Awesome-Vulnerability-Research
- https://github.com/smabramov/Vulnerabilities-and-attacks-on-information-systems
- https://github.com/zzzWTF/db-13-01
Reference in New Issue View Git Blame Copy Permalink