Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-5166HistoryOct 10, 2012 - 9:55 p.m.
CVE-2012-5166
2012-10-1021:55:00
Debian Security Bug Tracker
security-tracker.debian.org
17
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.199 Low
EPSS
Percentile
96.3%
ISC BIND 9.x before 9.7.6-P4, 9.8.x before 9.8.3-P4, 9.9.x before 9.9.1-P4, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P4 allows remote attackers to cause a denial of service (named daemon hang) via unspecified combinations of resource records.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | bind9 | < 1:9.8.1.dfsg.P1-4.3 | bind9_1:9.8.1.dfsg.P1-4.3_all.deb |
| Debian | 11 | all | bind9 | < 1:9.8.1.dfsg.P1-4.3 | bind9_1:9.8.1.dfsg.P1-4.3_all.deb |
| Debian | 10 | all | bind9 | < 1:9.8.1.dfsg.P1-4.3 | bind9_1:9.8.1.dfsg.P1-4.3_all.deb |
| Debian | 999 | all | bind9 | < 1:9.8.1.dfsg.P1-4.3 | bind9_1:9.8.1.dfsg.P1-4.3_all.deb |
| Debian | 13 | all | bind9 | < 1:9.8.1.dfsg.P1-4.3 | bind9_1:9.8.1.dfsg.P1-4.3_all.deb |
| Debian | 12 | all | isc-dhcp | < 4.4.3-P1-2 | isc-dhcp_4.4.3-P1-2_all.deb |
| Debian | 11 | all | isc-dhcp | < 4.4.1-2.3+deb11u2 | isc-dhcp_4.4.1-2.3+deb11u2_all.deb |
| Debian | 10 | all | isc-dhcp | < 4.4.1-2+deb10u1 | isc-dhcp_4.4.1-2+deb10u1_all.deb |
| Debian | 999 | all | isc-dhcp | < 4.4.3-P1-5 | isc-dhcp_4.4.3-P1-5_all.deb |
| Debian | 13 | all | isc-dhcp | < 4.4.3-P1-5 | isc-dhcp_4.4.3-P1-5_all.deb |
Related
nessus
nessus
AIX 6.1 TL 7 : bind9 (IV30365)
2013-01-24 00:00:00
Mandriva Linux Security Advisory : bind (MDVSA-2012:162)
2012-10-11 00:00:00
AIX 7.1 TL 0 : bind9 (IV30366)
2013-01-24 00:00:00
openvas
openvas
Mandriva Update for bind MDVSA-2012:162 (bind)
2012-10-11 00:00:00
Fedora Update for dnsperf FEDORA-2012-15981
2012-10-23 00:00:00
Oracle: Security Advisory (ELSA-2012-1364)
2015-10-06 00:00:00
redhat
redhat
(RHSA-2012:1364) Important: bind97 security update
2012-10-12 00:00:00
(RHSA-2012:1363) Important: bind security update
2012-10-12 00:00:00
(RHSA-2012:1365) Important: bind security update
2012-10-12 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: bind-dyndb-ldap-2.0-0.3.20121009git6a86b1.fc18
2012-10-21 06:15:36
[SECURITY] Fedora 18 Update: dnsperf-2.0.0.0-3.fc18
2012-10-21 06:15:37
[SECURITY] Fedora 18 Update: dhcp-4.2.4-18.P2.fc18
2012-10-21 06:15:36
oraclelinux
oraclelinux
bind security update
2012-10-12 00:00:00
bind97 security update
2012-10-12 00:00:00
bind security update
2012-11-29 00:00:00
centos
centos
bind97 security update
2012-10-12 20:51:55
bind, caching security update
2012-10-12 20:50:33
securityvulns
securityvulns
bind DoS
2012-10-12 00:00:00
[ MDVSA-2012:162 ] bind
2012-10-12 00:00:00
ESA-2014-016: EMC VPLEX Multiple Vulnerabilities
2014-03-31 00:00:00
prion
prion
Design/Logic Flaw
2012-10-10 21:55:00
ubuntucve
ubuntucve
CVE-2012-5166
2012-10-10 00:00:00
debian
debian
[SECURITY] [DSA 2560-1] bind9 security update
2012-10-20 19:33:44
aix
aix
Vulnerability in AIX bind
2012-10-23 10:13:27
cve
cve
CVE-2012-5166
2012-10-10 21:55:00
ubuntu
ubuntu
Bind vulnerability
2012-10-10 00:00:00
amazon
amazon
Important: bind
2012-10-23 10:39:00
osv
osv
bind9 - denial of service
2012-10-20 00:00:00
suse
suse
bind: Specially crafted DNS data can cause a lockup in named. (important)
2012-10-19 10:08:52
Security update for bind (important)
2012-10-23 19:08:49
Security update for bind (important)
2012-11-05 19:08:49
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:58:51
freebsd
freebsd
dns/bind9* -- crash on deliberately constructed combination of records
2012-09-26 00:00:00
FreeBSD -- Multiple Denial of Service vulnerabilities with named(8)
2012-11-22 00:00:00
f5
f5
K14201 : BIND denial-of-service attack CVE-2012-5166/CVE-2012-4244
2014-08-26 00:00:00
SOL14201 - BIND denial-of-service attack CVE-2012-5166/CVE-2012-4244
2013-02-11 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-12:06.bind
2012-11-22 00:00:00
slackware
slackware
[slackware-security] bind
2012-12-07 03:50:45
threatpost
threatpost
Six Security Flaws Fixed in BIND 9.9.2
2012-12-05 16:15:32
gentoo
gentoo
BIND: Denial of service
2014-01-29 00:00:00
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.199 Low
EPSS
Percentile
96.3%
Related for DEBIANCVE:CVE-2012-5166