Buffer Overflow Vulnerability in ISC BIND Affects Remote DNS Query Handling
CVE-2015-5722

Currently unrated

Key Information:

Vendor

Isc
Status
Bind
Vendor
CVE Published:
5 September 2015

What is CVE-2015-5722?

A buffer overflow vulnerability exists in the ISC BIND DNS software which allows remote attackers to trigger a denial of service. This can occur when a zone is created with a malformed DNSSEC key, and a query is made for a name within that zone. The flaw is present in versions of BIND prior to 9.9.7-P3 and 9.10.2-P4. Depending on the impact of this exploit, the DNS service may abruptly terminate, leading to potential disruptions in domain resolution.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.ubuntu.com/usn/USN-2728-1
vendor-advisoryx_refsource_UBUNTU
http://www.oracle.com/technetwork/topics/security/ovmbull...
x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-security-announce/2015...
vendor-advisoryx_refsource_SUSE

EPSS Score

65% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.