Vulnerability Description
Race condition in the ns_client structure management in ISC BIND 9.9.x before 9.9.1-P2 allows remote attackers to cause a denial of service (memory consumption or process exit) via a large volume of TCP queries.
CVSS Score
4.3
MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Isc | Bind | 9.9.0 |
Related Weaknesses (CWE)
References
- http://www.slackware.com/security/viewer.php?l=slackware-security&y=2012&m=slack
- https://kb.isc.org/article/AA-00730Vendor Advisory
- http://www.slackware.com/security/viewer.php?l=slackware-security&y=2012&m=slack
- https://kb.isc.org/article/AA-00730Vendor Advisory
FAQ
What is CVE-2012-3868?
CVE-2012-3868 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Race condition in the ns_client structure management in ISC BIND 9.9.x before 9.9.1-P2 allows remote attackers to cause a denial of service (memory consumption or process exit) via a large volume of T...
How severe is CVE-2012-3868?
CVE-2012-3868 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-3868?
Check the references section above for vendor advisories and patch information. Affected products include: Isc Bind.