[Forgot Password]
Login  Register Subscribe

24128

 
 

131573

 
 

111017

 
 

909

 
 

86402

 
 

136

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML view JSON

CVE-2015-8000Date: (C)2015-12-24   (M)2018-06-17


db.c in named in ISC BIND 9.x before 9.9.8-P2 and 9.10.x before 9.10.3-P2 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a malformed class attribute.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:CVSS V2 Severity:
CVSS Score : CVSS Score : 5.0
Exploit Score: Exploit Score: 10.0
Impact Score: Impact Score: 2.9
 
CVSS V3 Metrics:CVSS V2 Metrics:
Attack Vector: Access Vector: NETWORK
Attack Complexity: Access Complexity: LOW
Privileges Required: Authentication: NONE
User Interaction: Confidentiality: NONE
Scope: Integrity: NONE
Confidentiality: Availability: PARTIAL
Integrity:  
Availability:  
  
Reference:
SECTRACK-1034418
BID-79349
DSA-3420
FEDORA-2015-09bf9e06ea
FEDORA-2015-2df40de264
FEDORA-2015-40882ddfb1
FEDORA-2015-e278e12ebc
RHSA-2015:2655
RHSA-2015:2656
RHSA-2015:2658
RHSA-2016:0078
RHSA-2016:0079
SSA:2015-349-01
SSRT102983
SUSE-SU-2015:2340
SUSE-SU-2015:2341
SUSE-SU-2015:2359
SUSE-SU-2016:0227
USN-2837-1
http://packetstormsecurity.com/files/134882/FreeBSD-Security-Advisory-BIND-Denial-Of-Service.html
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
https://blogs.sophos.com/2016/02/17/utm-up2date-9-354-released/
https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released/
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04923105
https://kb.isc.org/article/AA-01317
https://kb.isc.org/article/AA-01380
https://kb.isc.org/article/AA-01438
openSUSE-SU-2015:2364
openSUSE-SU-2015:2365
openSUSE-SU-2015:2391

CPE    228
cpe:/a:isc:bind:9.6-esv-r9
cpe:/a:isc:bind:9.9.8:s1
cpe:/a:isc:bind:9.6-esv-r9:p1
cpe:/a:isc:bind:8.4.7
...
CWE    1
CWE-20
OVAL    29
oval:org.secpod.oval:def:602309
oval:org.secpod.oval:def:501733
oval:org.secpod.oval:def:501735
oval:org.secpod.oval:def:501736
...

© SecPod Technologies