CVE-2014-3859CVE-2014-3859

Affected configuration(s):

cpe:/a:isc:bind:9.10.0

Date published: 2014-06-13T07:19:57.907-04:00

Date last modified: 2017-01-06T22:00:07.223-05:00

CVSS Score: 5.0

Principal attack vector: NETWORK

Complexity:  LOW

Reference URL: http://www.securityfocus.com/bid/68193

Summary: libdns in ISC BIND 9.10.0 before P2 does not properly handle EDNS options, which allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a crafted packet, as demonstrated by an attack against named, dig, or delv.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *