CVE-2011-2465

2011-07-0820:55:00

mitre

web.nvd.nist.gov

In Wild

isc bind

cve-2011-2465

denial of service

remote attackers

nvd

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

AI Score

6.5

Confidence

Low

EPSS

0.175

Percentile

96.2%

JSON

Unspecified vulnerability in ISC BIND 9 9.8.0, 9.8.0-P1, 9.8.0-P2, and 9.8.1b1, when recursion is enabled and the Response Policy Zone (RPZ) contains DNAME or certain CNAME records, allows remote attackers to cause a denial of service (named daemon crash) via an unspecified query.

Affected configurations

Nvd

Node

iscbindMatch9.8.0

iscbindMatch9.8.0p1

iscbindMatch9.8.0p2

iscbindMatch9.8.1b1

VendorProductVersionCPE
iscbind9.8.0cpe:/a:isc:bind:9.8.0:p2::
iscbind9.8.0cpe:/a:isc:bind:9.8.0:p1::
iscbind9.8.0cpe:/a:isc:bind:9.8.0:::
iscbind9.8.1cpe:/a:isc:bind:9.8.1:b1::

Vendor	Product	Version	CPE
isc	bind	9.8.0	cpe:/a:isc:bind:9.8.0:p2::
isc	bind	9.8.0	cpe:/a:isc:bind:9.8.0:p1::
isc	bind	9.8.0	cpe:/a:isc:bind:9.8.0:::
isc	bind	9.8.1	cpe:/a:isc:bind:9.8.1:b1::