CVE-2012-5689

CVSS V2 High 7.1 CVSS V3 None
Description
ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS64 with a Response Policy Zone that lacks an AAAA rewrite rule, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query for an AAAA record.
Overview
  • CVE ID
  • CVE-2012-5689
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2013-01-25T12:00:46
  • Last Modified Date
  • 2016-08-19T18:31:01
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:isc:bind:9.9.0:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.9.0:a1:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.9.0:a2:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.9.0:a3:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.9.0:b1:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.9.0:b2:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.9.0:rc1:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.9.0:rc2:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.9.0:rc3:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.9.0:rc4:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.9.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.9.1:p1:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.9.1:p2:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.9.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:* 1 OR
cpe:2.3:o:redhat:enterprise_linux_hpc_node:6.0:*:*:*:*:*:*:* 1 OR
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:* 1 OR
cpe:2.3:o:redhat:enterprise_linux_server_aus:6.4:*:*:*:*:*:*:* 1 OR
cpe:2.3:o:redhat:enterprise_linux_server_eus:6.4.z:*:*:*:*:*:*:* 1 OR
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.0:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.0:a1:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.0:b1:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.0:p1:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.0:p2:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.0:p4:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.0:rc1:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.1:b1:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.1:b2:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.1:b3:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.1:p1:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.1:rc1:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.2:b1:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.2:rc1:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.2:rc2:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.3:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.3:p1:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.3:p2:*:*:*:*:*:* 1 OR
cpe:2.3:a:isc:bind:9.8.4:*:*:*:*:*:*:* 1 OR
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:* 1 OR
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:* 1 OR
cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:* 1 OR
CVSS Version 2
  • Version
  • 2.0
  • Vector String
  • AV:N/AC:M/Au:N/C:N/I:N/A:C
  • Access Vector
  • NETWORK
  • Access Compatibility
  • MEDIUM
  • Authentication
  • NONE
  • Confidentiality Impact
  • NONE
  • Integrity Impact
  • NONE
  • Availability Impact
  • COMPLETE
  • Base Score
  • 7.1
  • Severity
  • HIGH
  • Exploitability Score
  • 8.6
  • Impact Score
  • 6.9
References
History
Created Old Value New Value Data Type Notes
2022-05-10 10:14:24 Added to TrackCVE