Denial Of Service (DoS)

2020-08-3104:08:30

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.007 Low

EPSS

Percentile

80.6%

JSON

bind is vulnerable to denial of service (DoS). The vulnerability exists when a server is configured with both QNAME minimization and ‘forward first’, and a user who can send queries to it may be able to trigger the condition that will cause the server to crash.

CPENameOperatorVersion
bind:3.12eq9.14.12-r0
bind:3.10eq9.14.12-r1
bind:3.10eq9.14.8-r0
bind:3.10eq9.14.12-r0
bind:3.11eq9.14.12-r1
bind:3.11eq9.14.12-r0
bind:edgeeq9.14.8-r6
bind:edgeeq9.14.8-r5
bind:edgeeq9.14.8-r7
bind:edgeeq9.14.12-r0

Name	Operator	Version
bind:3.12	eq	9.14.12-r0
bind:3.10	eq	9.14.12-r1
bind:3.10	eq	9.14.8-r0
bind:3.10	eq	9.14.12-r0
bind:3.11	eq	9.14.12-r1
bind:3.11	eq	9.14.12-r0
bind:edge	eq	9.14.8-r6
bind:edge	eq	9.14.8-r5
bind:edge	eq	9.14.8-r7
bind:edge	eq	9.14.12-r0