CVE-2011-2465

2011-07-0820:55:00

[email protected]

web.nvd.nist.gov

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

AI Score

6.5

Confidence

High

EPSS

0.175

Percentile

96.2%

JSON

Unspecified vulnerability in ISC BIND 9 9.8.0, 9.8.0-P1, 9.8.0-P2, and 9.8.1b1, when recursion is enabled and the Response Policy Zone (RPZ) contains DNAME or certain CNAME records, allows remote attackers to cause a denial of service (named daemon crash) via an unspecified query.

Affected configurations

Nvd

Node

iscbindMatch9.8.0

iscbindMatch9.8.0p1

iscbindMatch9.8.0p2

iscbindMatch9.8.1b1

VendorProductVersionCPE
iscbind9.8.0cpe:2.3:a:isc:bind:9.8.0:*:*:*:*:*:*:*
iscbind9.8.0cpe:2.3:a:isc:bind:9.8.0:p1:*:*:*:*:*:*
iscbind9.8.0cpe:2.3:a:isc:bind:9.8.0:p2:*:*:*:*:*:*
iscbind9.8.1cpe:2.3:a:isc:bind:9.8.1:b1:*:*:*:*:*:*

Vendor	Product	Version	CPE
isc	bind	9.8.0	cpe:2.3:a:isc:bind:9.8.0:::::::*
isc	bind	9.8.0	cpe:2.3:a:isc:bind:9.8.0:p1::::::
isc	bind	9.8.0	cpe:2.3:a:isc:bind:9.8.0:p2::::::
isc	bind	9.8.1	cpe:2.3:a:isc:bind:9.8.1:b1::::::