Assertion Failure

libbind9.so is vulnerable to an Assertion Failure. The vulnerability is due to improper handling of client queries that trigger serving stale data and require lookups in local authoritative zone data, allowing an attacker to disrupt the normal operation of the BIND 9 service, potentially causing ...

Denial Of Service (DoS)

libbind9.so is vulnerable to Denial of Service. The vulnerability is due to the handling of "KEY" Resource Records in DNSSEC-signed domains, allowing attackers to exhaust resolver CPU resources by sending a stream of SIG0 signed requests...

Reachable Assertion

libbind9.so is vulnerable to an assertion failure during recursive resolution. The vulnerability is due to a bad interaction between DNS64 and serve-stale features when both are enabled. This can potentially leads to Denial of service...

Denial Of Service (DoS)

libbind9.so is vulnerable to Denial Of Service DoS. The vulnerability exists when debug logging is turned on, due to assertion errors in renderecs which allows an attacker to cause an application crash...

Denial Of Service (DoS)

libbind9.so is vulnerable to Denial Of Service. The vulnerability exists if the recursive-clients quota is reached on a BIND 9 resolver configured with both stale-answer-enable yes and stale-answer-client-timeout 0, which leads to a sequence of serve-stale-related lookups could cause the named to...

Denial Of Service (DoS)

libbind9.so is vulnerable to Denial Of Service. The vulnerability exists because the named instance is configured to run as a DNSSEC-validating recursive resolver with the aggressive use of the DNSSEC-Validated cache RFC 8198 option synth-from-dnssec enabled, allowing an attacker to remotely...

Denial Of Service (DoS)

libbind9.so is vulnerable to Denial Of Service. The vulnerability exists due to improper memory management in the cache, which allows an attacker to effectively bypass the max-cache-size configuration statement...

Denial Of Service (DoS)

libbind9.so is vulnerable to denial of service. The number of TCP clients that can be connected at any given time is not limited, allowing a TCP client to send a large number of DNS requests over a single connection. This results in excess resource consumption which can lead to a denial of servic...

Denial Of Service (DoS)

libbind9.so is vulnerable to denial of service DoS. The attack exists because it allows establishment of simultaneous TCP client connections, resulting in exhaustion of resources for network and management of pool of files such as logs, descriptor files, zone journal files etc...

Denial Of Service (DoS)

libbind9.so is vulnerable to denial of service. The deny-answer-aliases feature which is used to protect end users against DNS rebinding attacks is affected by an assertion failure in name.c, which would allow a remote attacker to crash the process...

Privilege Escalation

libbind9.so is vulnerable to privilege escalation. Due to an unquoted service path configuration of the BIND installer, a local Windows user is able to escalate privileges to Administrator. Successful exploitation of the vulnerability will require the lcoal attacker to have permissions to write a...

Denial Of Service (DoS)

libbind9.so is vulnerable to denial of service. An assertion failure occurs when a response, with records in an unusual order, is processed. This is due to a mistaken assumption on the ordering of CNAME or DNAME resource records, which would cause named to exit with the assertion failure...

Denial Of Service (DoS)

libbind9.so is vulnerable to denial of service DoS attacks. The library contains a use-after-free bug in the fctxstoptimer function in the lib/dns/resolver.c file, allowing a malicious user to pass a DNS packet to cause an assertion failure and crash the application...

Denial Of Service (DoS)

libbind9.so is vulnerable to denial of service. An attacker is able to trigger an infinite recursion in lwresd and named using a non absolute name for getrrsetbyname that exceeds the maximum allowable length, resulting in a denial of service condition...

Denial Of Service (DoS)

libbind9.so is vulnerable to denial of service. An attacker is able to trigger an infinite recursion in lwresd and named using a non absolute name for getrrsetbyname that exceeds the maximum allowable length, resulting in a denial of service condition...

Denial Of Service (DoS)

libbind9.so is vulnerable to denial of service DoS attacks. The library contains a use-after-free bug in the fctxstoptimer function in the lib/dns/resolver.c file, allowing a malicious user to pass a DNS packet to cause an assertion failure and crash the application...