CVE-2000-0887
6.8 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.101 Low
EPSS
Percentile
94.9%
named in BIND 8.2 through 8.2.2-P6 allows remote attackers to cause a denial of service by making a compressed zone transfer (ZXFR) request and performing a name service query on an authoritative record that is not cached, aka the “zxfr bug.”
References
archives.neohapsis.com/archives/bugtraq/2000-11/0217.html
archives.neohapsis.com/archives/linux/suse/2000-q4/0657.html
distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000338
distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000339
frontal2.mandriva.com/security/advisories?name=MDKSA-2000:067
www.cert.org/advisories/CA-2000-20.html
www.debian.org/security/2000/20001112
www.redhat.com/support/errata/RHSA-2000-107.html
www.securityfocus.com/archive/1/143843
www.securityfocus.com/bid/1923
exchange.xforce.ibmcloud.com/vulnerabilities/5540
Related
6.8 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.101 Low
EPSS
Percentile
94.9%