| ID |
CVE-2011-2465
|
| Summary |
Unspecified vulnerability in ISC BIND 9 9.8.0, 9.8.0-P1, 9.8.0-P2, and 9.8.1b1, when recursion is enabled and the Response Policy Zone (RPZ) contains DNAME or certain CNAME records, allows remote attackers to cause a denial of service (named daemon crash) via an unspecified query. |
| References |
|
| Vulnerable Configurations |
-
cpe:2.3:a:isc:bind:9.8.0:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:9.8.0:*:*:*:*:*:*:*
-
cpe:2.3:a:isc:bind:9.8.0:p1:*:*:*:*:*:*
cpe:2.3:a:isc:bind:9.8.0:p1:*:*:*:*:*:*
-
cpe:2.3:a:isc:bind:9.8.0:p2:*:*:*:*:*:*
cpe:2.3:a:isc:bind:9.8.0:p2:*:*:*:*:*:*
-
cpe:2.3:a:isc:bind:9.8.1:b1:*:*:*:*:*:*
cpe:2.3:a:isc:bind:9.8.1:b1:*:*:*:*:*:*
|
| CVSS |
| Base: | 2.6 (as of 09-10-2018 - 19:32) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-noinfo |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
HIGH |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| NONE |
NONE |
PARTIAL |
|
| cvss-vector
via4
|
AV:N/AC:H/Au:N/C:N/I:N/A:P
|
| refmap
via4
|
| bid | 48565 | | bugtraq | 20110705 Security Advisory: CVE-2011-2465 ISC BIND 9 Remote Crash with Certain RPZ Configurations | | cert-vn | VU#137968 | | confirm | http://www.isc.org/software/bind/advisories/cve-2011-2465 | | fedora | FEDORA-2011-9146 | | osvdb | 73604 | | sectrack | 1025743 | | secunia | 45185 | | suse | SUSE-SA:2011:029 | | xf | iscbind-rpz-dos(68374) |
|
| Last major update |
09-10-2018 - 19:32 |
| Published |
08-07-2011 - 20:55 |
| Last modified |
09-10-2018 - 19:32 |
