Lucene search

K

[email protected]CVE-2006-4096

HistorySep 06, 2006 - 12:04 a.m.

CVE-2006-4096

2006-09-0600:04:00

[email protected]

web.nvd.nist.gov

48

cve-2006-4096

bind

denial of service

crash

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.2 High

AI Score

Confidence

High

0.205 Low

EPSS

Percentile

96.4%

BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via a flood of recursive queries, which cause an INSIST failure when the response is received after the recursion queue is empty.

Affected configurations

NVD

Node

iscbindMatch9.2.0

OR

iscbindMatch9.2.1

OR

iscbindMatch9.2.2

OR

iscbindMatch9.2.3

OR

iscbindMatch9.2.4

OR

iscbindMatch9.2.5

OR

iscbindMatch9.2.6

OR

iscbindMatch9.3

OR

iscbindMatch9.3.0

OR

iscbindMatch9.3.1

OR

iscbindMatch9.3.2

CPENameOperatorVersion
isc:bindisc bindeq9.2.0
isc:bindisc bindeq9.2.1
isc:bindisc bindeq9.2.2
isc:bindisc bindeq9.2.3
isc:bindisc bindeq9.2.4
isc:bindisc bindeq9.2.5
isc:bindisc bindeq9.2.6
isc:bindisc bindeq9.3
isc:bindisc bindeq9.3.0
isc:bindisc bindeq9.3.1

Rows per page:

1-10 of 111

References

docs.info.apple.com/article.html?artnum=305530

lists.apple.com/archives/security-announce/2007/May/msg00004.html

marc.info/?l=bugtraq&m=141879471518471&w=2

secunia.com/advisories/21752

secunia.com/advisories/21786

secunia.com/advisories/21790

secunia.com/advisories/21816

secunia.com/advisories/21818

secunia.com/advisories/21828

secunia.com/advisories/21835

secunia.com/advisories/21838

secunia.com/advisories/21912

secunia.com/advisories/21926

secunia.com/advisories/22298

secunia.com/advisories/24950

secunia.com/advisories/25402

security.freebsd.org/advisories/FreeBSD-SA-06:20.bind.asc

security.gentoo.org/glsa/glsa-200609-11.xml

securitytracker.com/id?1016794

slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.481241

www-1.ibm.com/support/docview.wss?uid=isg1IY89169

www-1.ibm.com/support/docview.wss?uid=isg1IY89178

www.kb.cert.org/vuls/id/697164

www.mandriva.com/security/advisories?name=MDKSA-2006:163

www.niscc.gov.uk/niscc/docs/re-20060905-00590.pdf?lang=en

www.novell.com/linux/security/advisories/2006_23_sr.html

www.novell.com/linux/security/advisories/2006_24_sr.html

www.openbsd.org/errata.html

www.openpkg.com/security/advisories/OpenPKG-SA-2006.019.html

www.securityfocus.com/archive/1/445600/100/0/threaded

www.securityfocus.com/bid/19859

www.ubuntu.com/usn/usn-343-1

www.us.debian.org/security/2006/dsa-1172

www.vupen.com/english/advisories/2006/3473

www.vupen.com/english/advisories/2006/3511

www.vupen.com/english/advisories/2007/1401

www.vupen.com/english/advisories/2007/1939

exchange.xforce.ibmcloud.com/vulnerabilities/28744

issues.rpath.com/browse/RPL-626

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9623

www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00967144

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.2 High

AI Score

Confidence

High

0.205 Low

EPSS

Percentile

96.4%

Related for CVE-2006-4096

nvd1 cvelist1 debiancve1 ubuntucve1 nessus11 openvas9 freebsd_advisory1 slackware1 osv1 freebsd1 gentoo1 debian1 securityvulns1 cert2 ubuntu1 seebug1