CVE ID:	CVE-2002-0029
Description:	Buffer overflows in the DNS stub resolver library in ISC BIND 4.9.2 through 4.9.10, and other derived libraries such as BSD libc and GNU glibc, allow remote attackers to execute arbitrary code via DNS server responses that trigger the overflow in the (1) getnetbyname, or (2) getnetbyaddr functions, aka "LIBRESOLV: buffer overrun" and a different vulnerability than CVE-2002-0684.
Test IDs:	1.3.6.1.4.1.25623.1.0.11857   1.3.6.1.4.1.25623.1.0.51041   1.3.6.1.4.1.25623.1.0.52804
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2002-0029 Cert/CC Advisory: CA-2002-31 http://www.cert.org/advisories/CA-2002-31.html CERT/CC vulnerability note: VU#844360 http://www.kb.cert.org/vuls/id/844360 http://lists.apple.com/archives/Security-announce/2002/Nov/msg00000.html NETBSD Security Advisory: NetBSD-SA2002-028 ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2002-028.txt.asc SGI Security Advisory: 20021201-01-P ftp://patches.sgi.com/support/free/security/advisories/20021201-01-P XForce ISS Database: bind-dns-libresolv-bo(10624) http://www.iss.net/security_center/static/10624.php BugTraq ID: 6186 http://www.securityfocus.com/bid/6186

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: