- Description
- rdataset.c in ISC BIND 9 Supported Preview Edition 9.9.8-S before 9.9.8-S5, when nxdomain-redirect is enabled, allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via crafted flag values in a query.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 3.0
- Type
- Primary
- Base score
- 5.9
- Impact score
- 3.6
- Exploitability score
- 2.2
- Vector string
- CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 2.6
- Impact score
- 2.9
- Exploitability score
- 4.9
- Vector string
- AV:N/AC:H/Au:N/C:N/I:N/A:P
- nvd@nist.gov
- CWE-20
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:isc:bind:9.9.8:s1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "52C0DC21-D024-4ABD-910B-3C6A9A04C8B2"
},
{
"criteria": "cpe:2.3:a:isc:bind:9.9.8:s2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "72392A81-BBFE-419F-84D1-2376CB552213"
},
{
"criteria": "cpe:2.3:a:isc:bind:9.9.8:s3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BBB98AAF-3EA6-47AD-949D-FBAC04AEC28E"
},
{
"criteria": "cpe:2.3:a:isc:bind:9.9.8:s4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A15FEF31-D201-4087-ACEB-D6E68B5F8AAC"
}
],
"operator": "OR"
}
]
}
]