Lucene search

MitreCVE-2000-0887

HistoryJan 22, 2001 - 5:00 a.m.

CVE-2000-0887

2001-01-2205:00:00

mitre

web.nvd.nist.gov

cve-2000-0887

bind 8.2

denial of service

remote attack

zxfr bug

nvd

name service query.

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.101

Percentile

94.9%

JSON

named in BIND 8.2 through 8.2.2-P6 allows remote attackers to cause a denial of service by making a compressed zone transfer (ZXFR) request and performing a name service query on an authoritative record that is not cached, aka the “zxfr bug.”

Affected configurations

Nvd

Node

iscbindMatch8.2.2p5

VendorProductVersionCPE
iscbind8.2.2cpe:2.3:a:isc:bind:8.2.2:p5:*:*:*:*:*:*

Vendor	Product	Version	CPE
isc	bind	8.2.2	cpe:2.3:a:isc:bind:8.2.2:p5::::::

References

archives.neohapsis.com/archives/bugtraq/2000-11/0217.html

archives.neohapsis.com/archives/linux/suse/2000-q4/0657.html

distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000338

distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000339

frontal2.mandriva.com/security/advisories?name=MDKSA-2000:067

www.cert.org/advisories/CA-2000-20.html

www.debian.org/security/2000/20001112

www.redhat.com/support/errata/RHSA-2000-107.html

www.securityfocus.com/archive/1/143843

www.securityfocus.com/bid/1923

exchange.xforce.ibmcloud.com/vulnerabilities/5540

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.101

Percentile

94.9%

JSON

Related for CVE-2000-0887