#VU94713 Reachable assertion in ISC BIND - CVE-2024-4076


Vulnerability identifier: #VU94713

Vulnerability risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-4076

CWE-ID: CWE-617

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
ISC BIND
Server applications / DNS servers

Vendor: ISC

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a reachable assertion when serving both stale cache data and authoritative zone content. A remote attacker can send specially crafted queries to the DNS server to trigger an assertion failure and perform a denial of service (DoS) attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

ISC BIND: 9.16.0 - 9.19.24

External links
https://kb.isc.org/docs/cve-2024-4076
https://www.openwall.com/lists/oss-security/2024/07/23/1

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Junos Space update for third-party components
Dell SmartFabric Storage Software update for third-party components
Anolis OS update for bind9.16
Anolis OS update for bind
Multiple vulnerabilities in IBM Cloud Pak for AIOps
Multiple vulnerabilities in IBM Cloud Pak for Business Automation
Multiple vulnerabilities in IBM watsonx Assistant for IBM Cloud Pak for Data
Multiple vulnerabilities in Dell Storage Resource Manager (SRM) and Dell Storage Monitoring and Reporting (SMR)
Multiple vulnerabilities in Red Hat OpenShift Container Platform 4.17
Multiple vulnerabilities in Red Hat OpenShift Container Platform 4.17