Vulnerability Description
Unspecified vulnerability in ISC BIND 9 9.8.0, 9.8.0-P1, 9.8.0-P2, and 9.8.1b1, when recursion is enabled and the Response Policy Zone (RPZ) contains DNAME or certain CNAME records, allows remote attackers to cause a denial of service (named daemon crash) via an unspecified query.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Isc | Bind | 9.8.0 |
References
- http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062522.html
- http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00002.html
- http://osvdb.org/73604
- http://secunia.com/advisories/45185Vendor Advisory
- http://www.isc.org/software/bind/advisories/cve-2011-2465PatchVendor Advisory
- http://www.kb.cert.org/vuls/id/137968US Government Resource
- http://www.securityfocus.com/archive/1/518750/100/0/threaded
- http://www.securityfocus.com/bid/48565
- http://www.securitytracker.com/id?1025743
- https://exchange.xforce.ibmcloud.com/vulnerabilities/68374
- http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062522.html
- http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00002.html
- http://osvdb.org/73604
- http://secunia.com/advisories/45185Vendor Advisory
- http://www.isc.org/software/bind/advisories/cve-2011-2465PatchVendor Advisory
FAQ
What is CVE-2011-2465?
CVE-2011-2465 is a vulnerability with a CVSS score of 2.6 (LOW). Unspecified vulnerability in ISC BIND 9 9.8.0, 9.8.0-P1, 9.8.0-P2, and 9.8.1b1, when recursion is enabled and the Response Policy Zone (RPZ) contains DNAME or certain CNAME records, allows remote atta...
How severe is CVE-2011-2465?
CVE-2011-2465 has been rated LOW with a CVSS base score of 2.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-2465?
Check the references section above for vendor advisories and patch information. Affected products include: Isc Bind.