CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
85.1%
According to its self-reported version number, the remote installation of BIND is affected by a denial of service vulnerability. The issue exists due to an error in ‘libdns’ that fails to properly handle Extension Mechanisms for DNS (EDNS) options.
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#
# (C) Tenable Network Security, Inc.
#
include("compat.inc");
if (description)
{
script_id(74495);
script_version("1.18");
script_cvs_date("Date: 2019/11/26");
script_cve_id("CVE-2014-3859");
script_bugtraq_id(68038);
script_name(english:"ISC BIND 9 EDNS Processing DoS");
script_summary(english:"Checks version of BIND.");
script_set_attribute(attribute:"synopsis", value:
"The remote name server is affected by a denial of service
vulnerability.");
script_set_attribute(attribute:"description", value:
"According to its self-reported version number, the remote installation
of BIND is affected by a denial of service vulnerability. The issue
exists due to an error in 'libdns' that fails to properly handle
Extension Mechanisms for DNS (EDNS) options.
Note that Nessus has not tested for this issue but has instead relied
only on the application's self-reported version number.");
script_set_attribute(attribute:"see_also", value:"https://kb.isc.org/docs/aa-01166");
script_set_attribute(attribute:"see_also", value:"https://lists.isc.org/pipermail/bind-announce/2014-June/000914.html");
script_set_attribute(attribute:"see_also", value:"https://tools.ietf.org/html/rfc6891");
script_set_attribute(attribute:"solution", value:
"Upgrade to BIND version 9.10.0-P2 or later.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2014-3859");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2014/06/11");
script_set_attribute(attribute:"patch_publication_date", value:"2014/06/11");
script_set_attribute(attribute:"plugin_publication_date", value:"2014/06/12");
script_set_attribute(attribute:"potential_vulnerability", value:"true");
script_set_attribute(attribute:"plugin_type", value:"remote");
script_set_attribute(attribute:"cpe", value:"cpe:/a:isc:bind");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"DNS");
script_copyright(english:"This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("bind_version.nasl");
script_require_keys("bind/version", "Settings/ParanoidReport");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
ver = get_kb_item_or_exit("bind/version");
if (report_paranoia < 2) audit(AUDIT_PARANOID);
# Check whether BIND is vulnerable, and recommend an upgrade.
fix = NULL;
# Vuln BIND 9.10.0.x < 9.10.0-P2
if (ver =~ "^9\.10\.0($|([ab][12]|rc[12]|-P1)$)")
fix = '9.10.0-P2';
else
audit(AUDIT_LISTEN_NOT_VULN, "BIND", 53, ver, "UDP");
if (report_verbosity > 0)
{
report =
'\n Installed version : ' + ver +
'\n Fixed version : ' + fix +
'\n';
security_warning(port:53, proto:"udp", extra:report);
}
else security_warning(port:53, proto:"udp");