ISC BIND through 9.9.9-P1, 9.10.x through 9.10.4-P1, and 9.11.x through 9.11.0b1 allows primary DNS servers to cause a denial of service (secondary DNS server crash) via a large AXFR response, and possibly allows IXFR servers to cause a denial of service (IXFR client crash) via a large IXFR response and allows remote authenticated users to cause a denial of service (primary DNS server crash) via a large UPDATE message.
2016-07-06T14:59:05.597
2025-04-12T10:46:40.837
Deferred
CVSSv3.1: 6.5 (MEDIUM)
AV:N/AC:L/Au:S/C:N/I:N/A:P
8.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | isc | bind | ≤ 9.9.8 | Yes |
| Application | isc | bind | ≤ 9.10.3 | Yes |
| Application | isc | bind | 9.9.9 | Yes |
| Application | isc | bind | 9.9.9 | Yes |
| Application | isc | bind | 9.9.9 | Yes |
| Application | isc | bind | 9.9.9 | Yes |
| Application | isc | bind | 9.10.4 | Yes |
| Application | isc | bind | 9.10.4 | Yes |
| Application | isc | bind | 9.11.0 | Yes |
| Application | isc | bind | 9.11.0 | Yes |
| Application | isc | bind | 9.11.0 | Yes |
| Application | isc | bind | 9.11.0 | Yes |
| Operating System | redhat | enterprise_linux | 5.0 | Yes |
| Operating System | redhat | enterprise_linux | 6.0 | Yes |
| Operating System | redhat | enterprise_linux | 7.0 | Yes |