ID CVE-2008-4163
Summary Unspecified vulnerability in ISC BIND 9.3.5-P2-W1, 9.4.2-P2-W1, and 9.5.0-P2-W1 on Windows allows remote attackers to cause a denial of service (UDP client handler termination) via unknown vectors.
References
Vulnerable Configurations
  • cpe:2.3:a:isc:bind:9.3.5:p2_w1:*:*:*:*:*:*
    cpe:2.3:a:isc:bind:9.3.5:p2_w1:*:*:*:*:*:*
  • cpe:2.3:a:isc:bind:9.4.2:p2_w1:*:*:*:*:*:*
    cpe:2.3:a:isc:bind:9.4.2:p2_w1:*:*:*:*:*:*
  • cpe:2.3:a:isc:bind:9.5.0:p2_w1:*:*:*:*:*:*
    cpe:2.3:a:isc:bind:9.5.0:p2_w1:*:*:*:*:*:*
CVSS
Base: 7.8 (as of 08-08-2017 - 01:32)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:C
refmap via4
bid 31252
mlist
  • [bind-announce] 20080919 BIND 9.3.5-P2-W2 is now available.
  • [bind-announce] 20080919 BIND 9.4.2-P2-W2 is now available.
  • [bind-announce] 20080919 BIND 9.5.0-P2-W2 is now available.
sectrack 1020901
secunia 31924
vupen ADV-2008-2637
xf iscbind-udp-dos(45234)
statements via4
contributor Joshua Bressers
lastmodified 2017-08-07
organization Red Hat
statement Not vulnerable. This flaw does not affect the version of BIND as shipped in Red Hat Enterprise Linux 2.1, 3, 4, or 5.
Last major update 08-08-2017 - 01:32
Published 22-09-2008 - 18:52
Back to Top