CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
EPSS
Percentile
80.8%
ISC reports:
A bug has been discovered in the most recent releases of
BIND 9 which has the potential for deliberate exploitation
as a denial-of-service attack. By sending a recursive
resolver a query for a record in a specially malformed zone,
an attacker can cause BIND 9 to exit with a fatal
“RUNTIME_CHECK” error in resolver.c.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | bind99 | < 9.9.3.1 | UNKNOWN |
FreeBSD | any | noarch | bind99-base | < 9.9.3.1 | UNKNOWN |
FreeBSD | any | noarch | bind98 | < 9.8.5.1 | UNKNOWN |
FreeBSD | any | noarch | bind98-base | < 9.8.5.1 | UNKNOWN |
FreeBSD | any | noarch | bind96 | < 9.6.3.2.ESV.R9 | UNKNOWN |
FreeBSD | any | noarch | bind96-base | < 9.6.3.2.ESV.R9 | UNKNOWN |