Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2014-0591

The query_findclosestnsec3 function in query.c in named in ISC BIND 9.6, 9.7, and 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2, and 9.6-ESV before 9.6-ESV-R10-P2, allows remote attackers to cause a denial of service (INSIST assertion failure and daemon exit) via a crafted DNS query to an authoritative nameserver that uses the NSEC3 signing feature.

Published

2014-01-14T04:29:56.953

Last Modified

2025-04-11T00:51:21.963

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 2.6 (LOW)

CVSSv2 Vector

AV:N/AC:H/Au:N/C:N/I:N/A:P

  • Access Vector: NETWORK
  • Access Complexity: HIGH
  • Authentication: NONE
  • Confidentiality Impact: NONE
  • Integrity Impact: NONE
  • Availability Impact: PARTIAL
Exploitability Score

4.9

Impact Score

2.9

Weaknesses
  • Type: Primary
    CWE-119
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application isc bind 9.6 Yes
Application isc bind 9.6 Yes
Application isc bind 9.6 Yes
Application isc bind 9.6 Yes
Application isc bind 9.6 Yes
Application isc bind 9.6 Yes
Application isc bind 9.6 Yes
Application isc bind 9.6 Yes
Application isc bind 9.6.0 Yes
Application isc bind 9.6.0 Yes
Application isc bind 9.6.0 Yes
Application isc bind 9.6.0 Yes
Application isc bind 9.6.1 Yes
Application isc bind 9.6.1 Yes
Application isc bind 9.6.1 Yes
Application isc bind 9.6.1 Yes
Application isc bind 9.6.1 Yes
Application isc bind 9.6.2 Yes
Application isc bind 9.6.2 Yes
Application isc bind 9.6.3 Yes
Application isc bind 9.6.3 Yes
Application isc bind 9.7.0 Yes
Application isc bind 9.7.0 Yes
Application isc bind 9.7.0 Yes
Application isc bind 9.7.0 Yes
Application isc bind 9.7.0 Yes
Application isc bind 9.7.0 Yes
Application isc bind 9.7.1 Yes
Application isc bind 9.7.1 Yes
Application isc bind 9.7.1 Yes
Application isc bind 9.7.1 Yes
Application isc bind 9.7.2 Yes
Application isc bind 9.7.2 Yes
Application isc bind 9.7.2 Yes
Application isc bind 9.7.2 Yes
Application isc bind 9.7.2 Yes
Application isc bind 9.7.3 Yes
Application isc bind 9.7.3 Yes
Application isc bind 9.7.3 Yes
Application isc bind 9.7.3 Yes
Application isc bind 9.7.4 Yes
Application isc bind 9.7.4 Yes
Application isc bind 9.7.4 Yes
Application isc bind 9.7.4 Yes
Application isc bind 9.7.5 Yes
Application isc bind 9.7.5 Yes
Application isc bind 9.7.5 Yes
Application isc bind 9.7.5 Yes
Application isc bind 9.7.6 Yes
Application isc bind 9.7.6 Yes
Application isc bind 9.7.6 Yes
Application isc bind 9.7.7 Yes
Application isc bind 9.8.0 Yes
Application isc bind 9.8.0 Yes
Application isc bind 9.8.0 Yes
Application isc bind 9.8.0 Yes
Application isc bind 9.8.0 Yes
Application isc bind 9.8.0 Yes
Application isc bind 9.8.0 Yes
Application isc bind 9.8.1 Yes
Application isc bind 9.8.1 Yes
Application isc bind 9.8.1 Yes
Application isc bind 9.8.1 Yes
Application isc bind 9.8.1 Yes
Application isc bind 9.8.1 Yes
Application isc bind 9.8.2 Yes
Application isc bind 9.8.2 Yes
Application isc bind 9.8.2 Yes
Application isc bind 9.8.3 Yes
Application isc bind 9.8.3 Yes
Application isc bind 9.8.3 Yes
Application isc bind 9.8.4 Yes
Application isc bind 9.8.5 Yes
Application isc bind 9.8.5 Yes
Application isc bind 9.8.5 Yes
Application isc bind 9.8.5 Yes
Application isc bind 9.8.5 Yes
Application isc bind 9.8.5 Yes
Application isc bind 9.8.5 Yes
Application isc bind 9.8.6 Yes
Application isc bind 9.8.6 Yes
Application isc bind 9.8.6 Yes
Application isc bind 9.8.6 Yes
Application isc bind 9.8.6 Yes
Application isc bind 9.9.4 Yes
Application isc bind 9.9.4 Yes
Application isc bind 9.9.4 Yes
Application isc bind 9.9.4 Yes
References