Lucene search
Ubuntu.comUB:CVE-2014-3859HistoryJun 13, 2014 - 12:00 a.m.
CVE-2014-3859
2014-06-1300:00:00
ubuntu.com
ubuntu.com
9
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.012 Low
EPSS
Percentile
85.1%
libdns in ISC BIND 9.10.0 before P2 does not properly handle EDNS options,
which allows remote attackers to cause a denial of service (REQUIRE
assertion failure and daemon exit) via a crafted packet, as demonstrated by
an attack against named, dig, or delv.
Notes
| Author | Note |
|---|---|
| mdeslaur | only affected 9.10+ |
Related
openvas
openvas
ISC BIND EDNS Option Processing Denial of Service Vulnerability - Linux
2017-01-24 00:00:00
ISC BIND EDNS Option Processing Denial of Service Vulnerability - Windows
2017-01-24 00:00:00
nessus
nessus
ISC BIND 9 EDNS Processing DoS
2014-06-12 00:00:00
ISC BIND 9.10.x < 9.10.1-P1 Multiple DoS
2014-12-15 00:00:00
cve
cve
CVE-2014-3859
2014-06-13 11:19:57
threatpost
threatpost
ISC Patches Critical DoS Vulnerability in BIND
2014-06-13 11:10:43
debiancve
debiancve
CVE-2014-3859
2014-06-13 11:19:57
checkpoint_advisories
checkpoint_advisories
ISC BIND EDNS Option Processing Denial of Service - Ver2 (CVE-2014-3859)
2015-03-26 00:00:00
Non Compliant DNS (CVE-2014-3859; CVE-2016-2848; CVE-2016-5426)
2019-06-23 00:00:00
prion
prion
Authentication flaw
2014-06-13 11:19:00
cvelist
cvelist
CVE-2014-3859
2014-06-13 10:00:00
nvd
nvd
CVE-2014-3859
2014-06-13 11:19:57
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.012 Low
EPSS
Percentile
85.1%
Related for UB:CVE-2014-3859