Lucene search
MitreCVE-2014-3859HistoryJun 13, 2014 - 11:19 a.m.
CVE-2014-3859
2014-06-1311:19:57
CWE-20
mitre
web.nvd.nist.gov
42
isc bind
denial of service
cve-2014-3859
libdns
edns options
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
7.2
Confidence
High
EPSS
0.012
Percentile
85.1%
libdns in ISC BIND 9.10.0 before P2 does not properly handle EDNS options, which allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a crafted packet, as demonstrated by an attack against named, dig, or delv.
Affected configurations
Node
iscbindMatch9.10.0
Related
openvas
openvas
ISC BIND EDNS Option Processing Denial of Service Vulnerability - Linux
2017-01-24 00:00:00
ISC BIND EDNS Option Processing Denial of Service Vulnerability - Windows
2017-01-24 00:00:00
nessus
nessus
ISC BIND 9 EDNS Processing DoS
2014-06-12 00:00:00
ISC BIND 9.10.x < 9.10.1-P1 Multiple DoS
2014-12-15 00:00:00
checkpoint_advisories
checkpoint_advisories
ISC BIND EDNS Option Processing Denial of Service - Ver2 (CVE-2014-3859)
2015-03-26 00:00:00
Non Compliant DNS (CVE-2014-3859; CVE-2016-2848; CVE-2016-5426)
2019-06-23 00:00:00
prion
prion
Authentication flaw
2014-06-13 11:19:00
cvelist
cvelist
CVE-2014-3859
2014-06-13 10:00:00
nvd
nvd
CVE-2014-3859
2014-06-13 11:19:57
threatpost
threatpost
ISC Patches Critical DoS Vulnerability in BIND
2014-06-13 11:10:43
ubuntucve
ubuntucve
CVE-2014-3859
2014-06-13 00:00:00
debiancve
debiancve
CVE-2014-3859
2014-06-13 11:19:57
osv
osv
bind-9.10.3P4-21.1 on GA media
2024-06-15 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
7.2
Confidence
High
EPSS
0.012
Percentile
85.1%
Related for CVE-2014-3859