Multiple vulnerabilities in ISC BIND



| Updated: 2024-06-17
Risk Medium
Patch available YES
Number of vulnerabilities 2
CVE-ID CVE-2006-0987
CVE-1999-0024
CWE-ID CWE-400
CWE-350
Exploitation vector Network
Public exploit Public exploit code for vulnerability #1 is available.
Vulnerable software
Subscribe 		ISC BIND
Server applications / DNS servers

Vendor

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Resource exhaustion

EUVDB-ID: #VU92164

Risk: Medium

CVSSv3.1: 4.9 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:F/RL:O/RC:C]

CVE-ID: CVE-2006-0987

CWE-ID: CWE-400 - Resource exhaustion

Exploit availability: Yes

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to the default configuration of ISC BIND when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses. A remote attacker can trigger resource exhaustion and cause a denial of service (traffic amplification) via DNS queries with spoofed source IP addresses.

Mitigation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability..

Vulnerable software versions

ISC BIND: before 9.4.1-P1

CPE2.3
External links

http://dns.measurement-factory.com/surveys/sum1.html
http://kb.isc.org/article/AA-00269
http://www.securityfocus.com/archive/1/426368/100/0/threaded
http://www.us-cert.gov/reading_room/DNS-recursion121605.pdf


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, a fully functional exploit for this vulnerability is available.

2) Reliance on Reverse DNS Resolution for a Security-Critical Action

EUVDB-ID: #VU92162

Risk: Medium

CVSSv3.1: 4.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-1999-0024

CWE-ID: CWE-350 - Reliance on Reverse DNS Resolution for a Security-Critical Action

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to predictable query IDs. A remote unauthenticated attacker can trigger the vulnerability to modify data on the target system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

ISC BIND: before 8.1.1

CPE2.3
External links

http://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0024


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###