Denial of Service in ISC BIND 9.x Domains
CVE-2015-8000

Currently unrated

Key Information:

Vendor
Oracle
Vendor
CVE Published:
16 December 2015

Summary

A vulnerability in ISC BIND versions prior to 9.9.8-P2 and 9.10.3-P2 allows remote attackers to exploit a flaw in the network handling of class attributes. This can lead to a denial of service condition where the daemon may fail due to an assertion failure, resulting in an unexpected termination. Users are advised to update their software to the latest versions to mitigate this issue.

References

EPSS Score

64% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.