CVE-2006-0987

Severity

50%

Complexity

99%

Confidentiality

48%

This vulnerability affects ISC, BIND versions 9.3.2 and previous.

The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses, which allows remote attackers to cause a denial of service (traffic amplification) via DNS queries with spoofed source IP addresses.

This vulnerability affects ISC, BIND versions 9.3.2 and previous.

CVSS 2.0 Base Score 5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P).

Overview

First reported 18 years ago

2006-03-03 11:02:00

Last updated 6 years ago

2018-10-18 16:30:00

Affected Software

ISC BIND 9.3.2

9.3.2

References

http://dns.measurement-factory.com/surveys/sum1.html

http://kb.isc.org/article/AA-00269

20060228 recursive DNS servers DDoS as a growing DDoS problem

http://www.us-cert.gov/reading_room/DNS-recursion121605.pdf

Patch, Vendor Advisory

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.