CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:N/I:N/A:P
EPSS
Percentile
97.9%
The query_findclosestnsec3 function in query.c in named in ISC BIND 9.6,
9.7, and 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2, and 9.6-ESV before
9.6-ESV-R10-P2, allows remote attackers to cause a denial of service
(INSIST assertion failure and daemon exit) via a crafted DNS query to an
authoritative nameserver that uses the NSEC3 signing feature.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 10.04 | noarch | bind9 | <Β 1:9.7.0.dfsg.P1-1ubuntu0.11 | UNKNOWN |
ubuntu | 12.04 | noarch | bind9 | <Β 1:9.8.1.dfsg.P1-4ubuntu0.8 | UNKNOWN |
ubuntu | 12.10 | noarch | bind9 | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.4 | UNKNOWN |
ubuntu | 13.04 | noarch | bind9 | <Β 1:9.9.2.dfsg.P1-2ubuntu2.2 | UNKNOWN |
ubuntu | 13.10 | noarch | bind9 | <Β 1:9.9.3.dfsg.P2-4ubuntu1.1 | UNKNOWN |