Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2017-3141
PUBLISHED
More InfoOfficial Page
Assigner-isc
Assigner Org ID-404fd4d2-a609-4245-b543-2c944a302a22
View Known Exploited Vulnerability (KEV) details
Published At-16 Jan, 2019 | 20:00
Updated At-16 Sep, 2024 | 17:23
Rejected At-
▼CVE Numbering Authority (CNA)
Windows service and uninstall paths are not quoted when BIND is installed

The BIND installer on Windows uses an unquoted service path which can enable a local user to achieve privilege escalation if the host file system permissions allow this. Affects BIND 9.2.6-P2->9.2.9, 9.3.2-P1->9.3.6, 9.4.0->9.8.8, 9.9.0->9.9.10, 9.10.0->9.10.5, 9.11.0->9.11.1, 9.9.3-S1->9.9.10-S1, 9.10.5-S1.

Affected Products
Vendor
Internet Systems Consortium, Inc.ISC
Product
BIND 9
Versions
Affected
  • 9.2.6-P2->9.2.9, 9.3.2-P1->9.3.6, 9.4.0->9.8.8, 9.9.0->9.9.10, 9.10.0->9.10.5, 9.11.0->9.11.1, 9.9.3-S1->9.9.10-S1, 9.10.5-S1
Problem Types
TypeCWE IDDescription
textN/AThis vulnerability exists in the installer delivered with BIND for Windows and not within BIND itself. Non-Windows builds and installations are unaffected. A manual installation of BIND where the service path is quoted when added would not be at risk.
Type: text
CWE ID: N/A
Description: This vulnerability exists in the installer delivered with BIND for Windows and not within BIND itself. Non-Windows builds and installations are unaffected. A manual installation of BIND where the service path is quoted when added would not be at risk.
Metrics
VersionBase scoreBase severityVector
3.07.2HIGH
CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
Version: 3.0
Base score: 7.2
Base severity: HIGH
Vector:
CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

Upgrade to the patched release most closely related to your current version of BIND. These can all be downloaded from http://www.isc.org/downloads. BIND 9 version 9.9.10-P1 BIND 9 version 9.10.5-P1 BIND 9 version 9.11.1-P1 BIND Supported Preview Edition is a special feature preview branch of BIND provided to eligible ISC support customers. BIND 9 version 9.9.10-S2 BIND 9 version 9.10.5-S2

Configurations
Workarounds

BIND installations on Windows are not at risk if the host file permissions prevent creation of a binary in a location where the service executor would run it instead of named.exe.

Exploits

No known active exploits but this generic weakness is already a well-known attack vector if user file access permissions do not adequately prevent the installation of malicious executables.

Credits
ISC would like to thank John Page aka hyp3rlinx for reporting this issue.
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://security.gentoo.org/glsa/201708-01
vendor-advisory
x_refsource_GENTOO
https://kb.isc.org/docs/aa-01496
x_refsource_CONFIRM
http://www.securitytracker.com/id/1038693
vdb-entry
x_refsource_SECTRACK
https://www.exploit-db.com/exploits/42121/
exploit
x_refsource_EXPLOIT-DB
https://security.netapp.com/advisory/ntap-20180926-0001/
x_refsource_CONFIRM
http://www.securityfocus.com/bid/99089
vdb-entry
x_refsource_BID
Hyperlink: https://security.gentoo.org/glsa/201708-01
Resource:
vendor-advisory
x_refsource_GENTOO
Hyperlink: https://kb.isc.org/docs/aa-01496
Resource:
x_refsource_CONFIRM
Hyperlink: http://www.securitytracker.com/id/1038693
Resource:
vdb-entry
x_refsource_SECTRACK
Hyperlink: https://www.exploit-db.com/exploits/42121/
Resource:
exploit
x_refsource_EXPLOIT-DB
Hyperlink: https://security.netapp.com/advisory/ntap-20180926-0001/
Resource:
x_refsource_CONFIRM
Hyperlink: http://www.securityfocus.com/bid/99089
Resource:
vdb-entry
x_refsource_BID
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://security.gentoo.org/glsa/201708-01
vendor-advisory
x_refsource_GENTOO
x_transferred
https://kb.isc.org/docs/aa-01496
x_refsource_CONFIRM
x_transferred
http://www.securitytracker.com/id/1038693
vdb-entry
x_refsource_SECTRACK
x_transferred
https://www.exploit-db.com/exploits/42121/
exploit
x_refsource_EXPLOIT-DB
x_transferred
https://security.netapp.com/advisory/ntap-20180926-0001/
x_refsource_CONFIRM
x_transferred
http://www.securityfocus.com/bid/99089
vdb-entry
x_refsource_BID
x_transferred
Hyperlink: https://security.gentoo.org/glsa/201708-01
Resource:
vendor-advisory
x_refsource_GENTOO
x_transferred
Hyperlink: https://kb.isc.org/docs/aa-01496
Resource:
x_refsource_CONFIRM
x_transferred
Hyperlink: http://www.securitytracker.com/id/1038693
Resource:
vdb-entry
x_refsource_SECTRACK
x_transferred
Hyperlink: https://www.exploit-db.com/exploits/42121/
Resource:
exploit
x_refsource_EXPLOIT-DB
x_transferred
Hyperlink: https://security.netapp.com/advisory/ntap-20180926-0001/
Resource:
x_refsource_CONFIRM
x_transferred
Hyperlink: http://www.securityfocus.com/bid/99089
Resource:
vdb-entry
x_refsource_BID
x_transferred
Details not found