CVE-2015-8705

Published Jan 20, 2016
Last updated 6 years ago
CVSS high 7.0
Overview

Description: buffer.c in named in ISC BIND 9.10.x before 9.10.3-P3, when debug logging is enabled, allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit, or daemon crash) or possibly have unspecified other impact via (1) OPT data or (2) an ECS option.
Source: cve@mitre.org
NVD status: Modified
Risk scores

CVSS 3.0

Type: Primary
Base score: 7
Impact score: 4.7
Exploitability score: 2.2
Vector string: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H
Severity: HIGH
CVSS 2.0

Type: Primary
Base score: 6.6
Impact score: 8.5
Exploitability score: 4.9
Vector string: AV:N/AC:H/Au:N/C:P/I:P/A:C
Weaknesses

nvd@nist.gov: CWE-20
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:isc:bind:9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C52373DC-3E05-424B-9C78-4092A75C75A0"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "098633E6-88F0-4DBC-986F-D11EDA29877F"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1861756C-CC81-4EAB-8427-57A3C62BFF96"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CDD642FC-1764-4090-A32D-830CEAE69E53"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE954FD0-56AF-4757-BAA8-B0C64703F6AF"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BF891263-4ACE-47C3-83F3-C06E49F32451"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F947835-8E96-4793-B81E-EEC103BF0CB3"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA6520F4-B203-400A-8629-8A40B739DB11"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2AF07E87-B109-4B15-A358-7A454502E077"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "614C9459-D526-4880-AE03-4A1558CB941F"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.2.2:p3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A969C3E7-9E4F-4767-86D1-7E6B3970A7B4"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1CFA05CD-0BE4-4E85-A3DE-8B3E2622159F"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D43375C5-0736-43DE-99B5-B75719D0AD0F"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.2.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E4360536-0BA6-41DB-AA87-45AFB51562CD"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.2.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "438AEC8C-DD71-4A25-9E9D-A89415F7EC83"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.2.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2CDF6B08-6BA8-400C-BF01-ABD2306FE0D8"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8FA93166-513D-40AA-9855-FC89060BA03C"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "847C1017-F964-4A33-BEA8-DDB202DD0FB6"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8B0D8854-64B6-42C9-B4D2-B2AF16AC0F03"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92F95086-3107-4C38-BB3B-7BABA9BD15C3"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1AE49740-2220-4305-BB8A-80E56CF4D9E9"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C8B18D7-4D15-46A7-8013-E6267127A427"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6D7C7524-6943-4D94-8835-0221F0F0CD63"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.4.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8F0AA9D0-9657-4E18-BF8B-45284C2D40A9"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "916D4013-27A5-4688-A985-A9B77F90AC45"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.4.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F8583B8D-54A4-4064-810B-34F4F5A33A36"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.4.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E01A12DF-E94B-426E-8751-96FC56105D5F"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.4.3:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19ADAB10-BDD0-409E-93C2-9E7223464131"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A944178-032B-4637-842D-BC6B227043A3"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "32CEF8AD-9EE7-4ADA-888E-883751962529"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.5.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "90EE9C4A-F014-4ABA-9C4C-5D9561DD0A47"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3F592D0F-095C-4F3B-97E7-E92C259D0CD9"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.5.1:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C55EC1E1-4D79-4357-94CB-7E152DFDE8DA"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.5.1:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "83205FA5-56A2-4BBD-9278-2844704BAB07"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4449E90-2112-4860-A981-66639B9318ED"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.5.2:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A49A7D91-73BC-4894-A548-C46691AA66AF"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.5.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5B9707CD-5410-4254-B44C-A0B80D4FDCB5"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.5.3:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0374932B-AE66-42C1-9797-380E8B73155E"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20B4B4DA-5780-4D04-8A2B-371C06A470CE"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.6:r5_p1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9672E9A0-C7F1-48DE-AE5B-977DFD614E61"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.6:r6_b1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "11FBC346-F6B6-40D6-8DA2-345BF20B450C"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.6:r6_rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5272F28D-4257-4116-8C66-98EF875BEE63"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.6:r6_rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E6BF457D-BDF9-4C0D-98B8-B8AB677BFB33"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.6:r7_p1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4A9A0380-C0A1-4957-A199-3165F691F0A0"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.6:r7_p2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "51913202-006F-4A5B-AAF0-637AAFA8CE43"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.9.8:p2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B02B1665-1283-4B0B-9AD2-827C8BEFCF3B"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16EB6777-8E49-4B07-B859-06D0C2F29DC8"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.1:p1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "54E5A7DC-D432-470A-B95A-AF8EE1ECB561"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5374616E-7AA5-4C36-A0B3-9AE74E080A71"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.2:b1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D35C161A-3CCC-4FFC-9698-98FAE71BBF2F"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.2:p1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6518FD7D-0249-4793-9531-E5338EEC4C7B"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.2:p2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D468B433-D785-4A5B-A8CC-B2F1B27BAB7C"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.2:p3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7BCF9BD9-F557-408C-9CD7-BD0EAD66366F"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.2:p4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "407F36C2-886C-48A7-A3AB-E5F9194775D0"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.2:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "24CEA3F3-C4F8-4BD1-92EA-AC1B54A3CFE6"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "40BD4A8C-785C-4460-AB52-B249C5DC9BC3"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.3:p1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88359A5D-CE32-4920-BE5D-98EC262B41EB"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.3:p2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B77760E4-57C5-4A5E-A169-C84409930757"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.3:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "893ACAAC-406E-4A1C-970B-A15B42961271"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References
