Notifications for a CVE
Stay informed of any changes for a specific CVE.
CVE Descriptions
named in ISC BIND 9.x before 9.9.7-P2 and 9.10.x before 9.10.2-P3 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via TKEY queries.
CVE Informations
Related Weaknesses
| Weakness Name | Source | |
|---|---|---|
| Category : Data Processing Errors Weaknesses in this category are typically found in functionality that processes data. Data processing is the manipulation of input to retrieve or save information. |
Metrics
| Metrics | Score | Severity | CVSS Vector | Source |
|---|---|---|---|---|
| V2 | 7.8 | AV:N/AC:L/Au:N/C:N/I:N/A:C | nvd@nist.gov |
EPSS
EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.
EPSS Score
The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.
EPSS Percentile
The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.
Exploit information
Exploit Database EDB-ID : 37721
Publication date : 2015-07-31 22h00 +00:00
Author : Errata Security
EDB Verified : Yes
Exploit Database EDB-ID : 37723
Publication date : 2015-08-04 22h00 +00:00
Author : elceef
EDB Verified : No
Products Mentioned
Configuraton 0
Isc>>Bind >> Version To (including) 9.9.7
Isc>>Bind >> Version To (including) 9.10.2
References
http://packetstormsecurity.com/files/132926/BIND-TKEY-Query-Denial-Of-Service.html
Tags : x_refsource_MISC
Tags : x_refsource_MISC
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
Tags : x_refsource_CONFIRM
Tags : x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00050.html
Tags : vendor-advisory, x_refsource_SUSE
Tags : vendor-advisory, x_refsource_SUSE
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04789415
Tags : x_refsource_CONFIRM
Tags : x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00044.html
Tags : vendor-advisory, x_refsource_SUSE
Tags : vendor-advisory, x_refsource_SUSE
http://lists.fedoraproject.org/pipermail/package-announce/2015-August/163015.html
Tags : vendor-advisory, x_refsource_FEDORA
Tags : vendor-advisory, x_refsource_FEDORA
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05095918
Tags : x_refsource_CONFIRM
Tags : x_refsource_CONFIRM
http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
Tags : x_refsource_CONFIRM
Tags : x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00045.html
Tags : vendor-advisory, x_refsource_SUSE
Tags : vendor-advisory, x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00001.html
Tags : vendor-advisory, x_refsource_SUSE
Tags : vendor-advisory, x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00048.html
Tags : vendor-advisory, x_refsource_SUSE
Tags : vendor-advisory, x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00043.html
Tags : vendor-advisory, x_refsource_SUSE
Tags : vendor-advisory, x_refsource_SUSE
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04952480
Tags : x_refsource_CONFIRM
Tags : x_refsource_CONFIRM
http://lists.fedoraproject.org/pipermail/package-announce/2015-August/163007.html
Tags : vendor-advisory, x_refsource_FEDORA
Tags : vendor-advisory, x_refsource_FEDORA
http://lists.fedoraproject.org/pipermail/package-announce/2015-August/163006.html
Tags : vendor-advisory, x_refsource_FEDORA
Tags : vendor-advisory, x_refsource_FEDORA
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00033.html
Tags : vendor-advisory, x_refsource_SUSE
Tags : vendor-advisory, x_refsource_SUSE
