CVE-2006-0987 - The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, all

CVE-2006-0987

Summary

The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses, which allows remote attackers to cause a denial of service (traffic amplification) via DNS queries with spoofed source IP addresses. This vulnerability affects ISC, BIND versions 9.3.2 and previous.

References

Vulnerable Configurations

cpe:2.3:a:isc:bind:9.3.2:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:9.3.2:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 18-10-2018 - 16:30)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bugtraq	20060228 recursive DNS servers DDoS as a growing DDoS problem
confirm	http://kb.isc.org/article/AA-00269
misc	http://dns.measurement-factory.com/surveys/sum1.html http://www.us-cert.gov/reading_room/DNS-recursion121605.pdf

Last major update

18-10-2018 - 16:30

Published

03-03-2006 - 11:02

Last modified

18-10-2018 - 16:30