A vulnerability, which was classified as critical, has been found in ISC BIND up to 9.10.8-P1/9.11.5-P2/9.11.5-S3/9.12.3-P2/9.13.6 (Domain Name Software). This issue affects an unknown functionality of the component Zone Transfer Handler. The manipulation with an unknown input leads to a privilege escalation vulnerability. Using CWE to declare the problem leads to CWE-732. Impacted is confidentiality. The summary by CVE is:

Controls for zone transfers may not be properly applied to Dynamically Loadable Zones (DLZs) if the zones are writable Versions affected: BIND 9.9.0 -> 9.10.8-P1, 9.11.0 -> 9.11.5-P2, 9.12.0 -> 9.12.3-P2, and versions 9.9.3-S1 -> 9.11.5-S3 of BIND 9 Supported Preview Edition. Versions 9.13.0 -> 9.13.6 of the 9.13 development branch are also affected. Versions prior to BIND 9.9.0 have not been evaluated for vulnerability to CVE-2019-6465.

The bug was discovered 02/21/2019. The weakness was released 10/09/2019 (Website). It is possible to read the advisory at kb.isc.org. The identification of this vulnerability is CVE-2019-6465 since 01/16/2019. The attack may be initiated remotely. No form of authentication is needed for a successful exploitation. The technical details are unknown and an exploit is not publicly available. The pricing for an exploit might be around USD $0-$5k at the moment (estimation calculated on 09/29/2020).

The vulnerability was handled as a non-public zero-day exploit for at least 230 days. During that time the estimated underground price was around $5k-$25k.

Upgrading eliminates this vulnerability.

Entries connected to this vulnerability are available at 143295, 143294, 143293 and 143292.

Productinfoedit

Type

• Domain Name Software

Vendor

• ISC

Name

• BIND

CPE 2.3infoedit

• 🔍
• 🔍
• 🔍

CPE 2.2infoedit

• 🔍
• 🔍
• 🔍

CVSSv3infoedit

CVSSv2infoedit

Exploitinginfoedit

Threat Intelligenceinfoedit

Countermeasuresinfoedit

Timelineinfoedit

Sourcesinfoedit

Entryinfoedit

Comments