{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"BIND 9 versions 9.11.x ant\u00e9rieures \u00e0 9.11.1-P1","product":{"name":"BIND","vendor":{"name":"ISC","scada":false}}},{"description":"BIND 9 versions 9.10.x ant\u00e9rieures \u00e0 9.10.5-P1","product":{"name":"BIND","vendor":{"name":"ISC","scada":false}}},{"description":"BIND 9 versions 9.9.x ant\u00e9rieures \u00e0 9.9.10-P1","product":{"name":"BIND","vendor":{"name":"ISC","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2017-3140","url":"https://www.cve.org/CVERecord?id=CVE-2017-3140"},{"name":"CVE-2017-3141","url":"https://www.cve.org/CVERecord?id=CVE-2017-3141"}],"links":[{"title":"Note Op\u00e9rationelle sur BIND 9.11.1","url":"https://kb.isc.org/article/AA-01497"}],"reference":"CERTFR-2017-AVI-184","revisions":[{"description":"version initiale.","revision_date":"2017-06-16T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans ISC BIND. Elles permettent \u00e0 un attaquant de\nprovoquer un d\u00e9ni de service \u00e0 distance et une \u00e9l\u00e9vation de privil\u00e8ges.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans ISC BIND","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 ISC AA-01496 du 14 juin 2017","url":"https://kb.isc.org/article/AA-01496/74/CVE-2017-3141%3A-Windows-service-and-uninstall-paths-are-not-quoted-when-BIND-is-installed.html"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 ISC AA-01495 du 14 juin 2017","url":"https://kb.isc.org/article/AA-01495/74/CVE-2017-3140%3A-An-error-processing-RPZ-rules-can-cause-named-to-loop-endlessly-after-handling-a-query.html"}]}