CVE-2015-8000

Currently unrated

Key Information:

Vendor: Oracle
Status: Linux; Solaris; Vm Server
Vendor: CVE Published:; 16 December 2015

Summary

db.c in named in ISC BIND 9.x before 9.9.8-P2 and 9.10.x before 9.10.3-P2 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a malformed class attribute.

References

http://www.oracle.com/technetwork/topics/security/ovmbull...

x_refsource_CONFIRM

http://marc.info/?l=bugtraq&m=145680832702035&w=2

vendor-advisoryx_refsource_HP

https://blogs.sophos.com/2016/02/17/utm-up2date-9-354-rel...

x_refsource_CONFIRM

EPSS Score

95% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 16, 2015
Vulnerability Reserved
Oct 28, 2015