Lucene search
HistoryJun 13, 2014 - 11:19 a.m.
CVE-2014-3859
isc bind
denial of service
cve-2014-3859
libdns
edns options
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
7.2 High
AI Score
Confidence
High
0.012 Low
EPSS
Percentile
85.2%
libdns in ISC BIND 9.10.0 before P2 does not properly handle EDNS options, which allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a crafted packet, as demonstrated by an attack against named, dig, or delv.
Affected configurations
Node
iscbindMatch9.10.0
Related
openvas
openvas
ISC BIND EDNS Option Processing Denial of Service Vulnerability - Linux
2017-01-24 00:00:00
ISC BIND EDNS Option Processing Denial of Service Vulnerability - Windows
2017-01-24 00:00:00
nessus
nessus
ISC BIND 9 EDNS Processing DoS
2014-06-12 00:00:00
ISC BIND 9.10.x < 9.10.1-P1 Multiple DoS
2014-12-15 00:00:00
threatpost
threatpost
ISC Patches Critical DoS Vulnerability in BIND
2014-06-13 11:10:43
debiancve
debiancve
CVE-2014-3859
2014-06-13 11:19:57
ubuntucve
ubuntucve
CVE-2014-3859
2014-06-13 00:00:00
prion
prion
Authentication flaw
2014-06-13 11:19:00
cvelist
cvelist
CVE-2014-3859
2014-06-13 10:00:00
nvd
nvd
CVE-2014-3859
2014-06-13 11:19:57
checkpoint_advisories
checkpoint_advisories
ISC BIND EDNS Option Processing Denial of Service - Ver2 (CVE-2014-3859)
2015-03-26 00:00:00
Non Compliant DNS (CVE-2014-3859; CVE-2016-2848; CVE-2016-5426)
2019-06-23 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
7.2 High
AI Score
Confidence
High
0.012 Low
EPSS
Percentile
85.2%
Related for CVE-2014-3859