Lucene search

K

[email protected]NVD:CVE-2012-5689

HistoryJan 25, 2013 - 12:00 p.m.

CVE-2012-5689

2013-01-2512:00:46

CWE-20

[email protected]

web.nvd.nist.gov

1

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

8.2 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

84.9%

ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS64 with a Response Policy Zone that lacks an AAAA rewrite rule, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query for an AAAA record.

Affected configurations

NVD

Node

iscbindMatch9.9.0

OR

iscbindMatch9.9.0a1

OR

iscbindMatch9.9.0a2

OR

iscbindMatch9.9.0a3

OR

iscbindMatch9.9.0b1

OR

iscbindMatch9.9.0b2

OR

iscbindMatch9.9.0rc1

OR

iscbindMatch9.9.0rc2

OR

iscbindMatch9.9.0rc3

OR

iscbindMatch9.9.0rc4

OR

iscbindMatch9.9.1

OR

iscbindMatch9.9.1p1

OR

iscbindMatch9.9.1p2

OR

iscbindMatch9.9.2

Node

redhatenterprise_linux_desktopMatch6.0

OR

redhatenterprise_linux_hpc_nodeMatch6.0

OR

redhatenterprise_linux_serverMatch6.0

OR

redhatenterprise_linux_server_ausMatch6.4

OR

redhatenterprise_linux_server_eusMatch6.4.z

OR

redhatenterprise_linux_workstationMatch6.0

Node

iscbindMatch9.8.0

OR

iscbindMatch9.8.0a1

OR

iscbindMatch9.8.0b1

OR

iscbindMatch9.8.0p1

OR

iscbindMatch9.8.0p2

OR

iscbindMatch9.8.0p4

OR

iscbindMatch9.8.0rc1

OR

iscbindMatch9.8.1

OR

iscbindMatch9.8.1b1

OR

iscbindMatch9.8.1b2

OR

iscbindMatch9.8.1b3

OR

iscbindMatch9.8.1p1

OR

iscbindMatch9.8.1rc1

OR

iscbindMatch9.8.2b1

OR

iscbindMatch9.8.2rc1

OR

iscbindMatch9.8.2rc2

OR

iscbindMatch9.8.3

OR

iscbindMatch9.8.3p1

OR

iscbindMatch9.8.3p2

OR

iscbindMatch9.8.4

Node

canonicalubuntu_linuxMatch12.04lts

OR

canonicalubuntu_linuxMatch14.04lts

OR

canonicalubuntu_linuxMatch15.04

References

rhn.redhat.com/errata/RHSA-2013-0550.html

www.isc.org/software/bind/advisories/cve-2012-5689

www.ubuntu.com/usn/USN-2693-1

kb.isc.org/article/AA-00855/

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

8.2 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

84.9%

Related for NVD:CVE-2012-5689

nessus12 veracode1 prion1 amazon1 openvas11 cve1 debiancve1 f52 redhat1 checkpoint_advisories1 cvelist1 centos1 seebug1 ubuntucve1 ubuntu1 oraclelinux2 gentoo1