CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
Percentile
69.5%
ISC BIND 9.7.2 through 9.7.2-P1 uses an incorrect ACL to restrict the
ability of Recursion Desired (RD) queries to access the cache, which allows
remote attackers to obtain potentially sensitive information via a DNS
query.
Author | Note |
---|---|
mdeslaur | only 9.7.2 and higher |