PT-2015-6643 · Isc+7 · Isc Bind+7

Breno Silveira Soares

Published

2015-07-07

Updated

2024-06-15

CVE-2015-4620

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions ISC BIND versions 9.7.x through 9.9.x before 9.9.7-P1 ISC BIND versions 9.10.x before 9.10.2-P2

Description The issue allows remote attackers to cause a denial of service by constructing crafted zone data and then making a query for a name in that zone. This occurs when the software is configured as a recursive resolver with DNSSEC validation, leading to a REQUIRE assertion failure and daemon exit.

Recommendations For versions 9.7.x through 9.9.x before 9.9.7-P1, update to version 9.9.7-P1 or later. For versions 9.10.x before 9.10.2-P2, update to version 9.10.2-P2 or later.

Exploit

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-17

Related Identifiers

ALT-PU-2015-1641

CESA-2015_1443

CESA-2015_1471

CVE-2015-4620

DLA-270-1

DSA-3304-1

HPSBUX03379

MGASA-2015-0272

OPENSUSE-SU-2024:10467-1

RHSA-2015:1443

RHSA-2015:1471

RHSA-2015_1443

RHSA-2015_1471

SUSE-SU-2015:1204-1

SUSE-SU-2015:1205-1

USN-2669-1

Affected Products

Alt Linux

Bind Server

Centos

Hp-Ux

Isc Bind

Red Hat

Suse

Ubuntu

PT-2015-6643 · Isc+7 · Isc Bind+7

CVE-2015-4620

Weakness Enumeration

Related Identifiers

Affected Products

References · 114