6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
6.6 Medium
AI Score
Confidence
High
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
0.01 Low
EPSS
Percentile
83.7%
ISC BIND is prone to a denial of service vulnerability.
# SPDX-FileCopyrightText: 2016 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
CPE = "cpe:/a:isc:bind";
if (description)
{
script_oid("1.3.6.1.4.1.25623.1.0.106118");
script_version("2023-07-21T05:05:22+0000");
script_tag(name:"last_modification", value:"2023-07-21 05:05:22 +0000 (Fri, 21 Jul 2023)");
script_tag(name:"creation_date", value:"2016-07-08 10:27:46 +0700 (Fri, 08 Jul 2016)");
script_tag(name:"cvss_base", value:"4.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:S/C:N/I:N/A:P");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2020-08-25 20:19:00 +0000 (Tue, 25 Aug 2020)");
script_tag(name:"qod_type", value:"remote_banner_unreliable");
script_cve_id("CVE-2016-6170");
script_tag(name:"solution_type", value:"Workaround");
script_name("ISC BIND AXFR Response Denial of Service Vulnerability");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2016 Greenbone AG");
script_family("Denial of Service");
script_dependencies("gb_isc_bind_consolidation.nasl");
script_mandatory_keys("isc/bind/detected");
script_tag(name:"summary", value:"ISC BIND is prone to a denial of service vulnerability.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"insight", value:"Primary DNS servers may cause a denial of service (secondary DNS server
crash) via a large AXFR response, and possibly allows IXFR servers to cause a denial of service (IXFR client
crash) via a large IXFR response and allows remote authenticated users to cause a denial of service (primary
DNS server crash) via a large UPDATE message.");
script_tag(name:"impact", value:"An authenticated remote attacker may cause a denial of service
condition.");
script_tag(name:"affected", value:"Version <= 9.10.4-P1.");
script_tag(name:"solution", value:"As a workaround operators of servers which
accept untrusted zone data can mitigate their risk by operating an intermediary
server whose role it is to receive zone data and then (if successful)
re-distribute it to client-facing servers. Successful exploitation of the
attack against the intermediary server may still occur but denial of service
against the client-facing servers is significantly more difficult to achieve
in this scenario.");
script_xref(name:"URL", value:"http://www.openwall.com/lists/oss-security/2016/07/06/3");
script_xref(name:"URL", value:"https://lists.dns-oarc.net/pipermail/dns-operations/2016-July/015058.html");
exit(0);
}
include("version_func.inc");
include("host_details.inc");
if( isnull( port = get_app_port( cpe:CPE ) ) )
exit( 0 );
if( ! infos = get_app_full( cpe:CPE, port:port, exit_no_version:TRUE ) )
exit( 0 );
version = infos["version"];
proto = infos["proto"];
location = infos["location"];
if( version_is_less_equal( version:version, test_version:"9.10.4p1" ) ) {
report = report_fixed_ver( installed_version:version, fixed_version:"Workaround", install_path:location );
security_message( port:port, data:report, proto:proto );
exit( 0 );
}
exit( 99 );
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
6.6 Medium
AI Score
Confidence
High
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
0.01 Low
EPSS
Percentile
83.7%