Lucene search

[email protected]NVD:CVE-2006-4096

HistorySep 06, 2006 - 12:04 a.m.

CVE-2006-4096

2006-09-0600:04:00

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.205 Low

EPSS

Percentile

96.4%

JSON

BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via a flood of recursive queries, which cause an INSIST failure when the response is received after the recursion queue is empty.

Affected configurations

NVD

Node

iscbindMatch9.2.0

iscbindMatch9.2.1

iscbindMatch9.2.2

iscbindMatch9.2.3

iscbindMatch9.2.4

iscbindMatch9.2.5

iscbindMatch9.2.6

iscbindMatch9.3

iscbindMatch9.3.0

iscbindMatch9.3.1

iscbindMatch9.3.2

References

docs.info.apple.com/article.html?artnum=305530

lists.apple.com/archives/security-announce/2007/May/msg00004.html

marc.info/?l=bugtraq&m=141879471518471&w=2

secunia.com/advisories/21752

secunia.com/advisories/21786

secunia.com/advisories/21790

secunia.com/advisories/21816

secunia.com/advisories/21818

secunia.com/advisories/21828

secunia.com/advisories/21835

secunia.com/advisories/21838

secunia.com/advisories/21912

secunia.com/advisories/21926

secunia.com/advisories/22298

secunia.com/advisories/24950

secunia.com/advisories/25402

security.freebsd.org/advisories/FreeBSD-SA-06:20.bind.asc

security.gentoo.org/glsa/glsa-200609-11.xml

securitytracker.com/id?1016794

slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.481241

www-1.ibm.com/support/docview.wss?uid=isg1IY89169

www-1.ibm.com/support/docview.wss?uid=isg1IY89178

www.kb.cert.org/vuls/id/697164

www.mandriva.com/security/advisories?name=MDKSA-2006:163

www.niscc.gov.uk/niscc/docs/re-20060905-00590.pdf?lang=en

www.novell.com/linux/security/advisories/2006_23_sr.html

www.novell.com/linux/security/advisories/2006_24_sr.html

www.openbsd.org/errata.html

www.openpkg.com/security/advisories/OpenPKG-SA-2006.019.html

www.securityfocus.com/archive/1/445600/100/0/threaded

www.securityfocus.com/bid/19859

www.ubuntu.com/usn/usn-343-1

www.us.debian.org/security/2006/dsa-1172

www.vupen.com/english/advisories/2006/3473

www.vupen.com/english/advisories/2006/3511

www.vupen.com/english/advisories/2007/1401

www.vupen.com/english/advisories/2007/1939

exchange.xforce.ibmcloud.com/vulnerabilities/28744

issues.rpath.com/browse/RPL-626

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9623

www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00967144

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.205 Low

EPSS

Percentile

96.4%

JSON

Related for NVD:CVE-2006-4096

cve1 cvelist1 debiancve1 nessus11 ubuntucve1 openvas9 freebsd_advisory1 freebsd1 gentoo1 securityvulns1 debian1 slackware1 osv1 cert2 ubuntu1 seebug1