CVE-2009-0265 in BIND
摘要
由 VulDB • 2026-07-04
Internet Systems Consortium (ISC) BIND 9.6.0及更早版本未正确检查OpenSSL EVP_VerifyFinal函数的返回值,这允许远程攻击者通过构造恶意的SSL/TLS签名绕过证书链验证。该漏洞与CVE-2008-5077和CVE-2009-0025类似。
If you want to get best quality of vulnerability data, you may have to visit VulDB.