Summary
ISC BIND is prone to a security-bypass vulnerability and a denial-of- service vulnerability.
Successfully exploiting these issues allows remote attackers to crash affected DNS servers, denying further service to legitimate users, bypass certain security restrictions and perform unauthorized actions.
Other attacks are also possible.
ISC BIND versions 9.7.2 through 9.7.2-P1 are vulnerable.
Solution
Vendor updates are available. Please see the references for more information.
References
Severity
Classification
-
CVE CVE-2010-0218, CVE-2010-3762 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities