CVE-2020-8622 in Communications Diameter Signaling Router情報

要約

〜によって MITRE

In BIND 9.0.0 -> 9.11.21, 9.12.0 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.9.3-S1 -> 9.11.21-S1 of the BIND 9 Supported Preview Edition, An attacker on the network path for a TSIG-signed request, or operating the server receiving the TSIG-signed request, could send a truncated response to that request, triggering an assertion failure, causing the server to exit. Alternately, an off-path attacker would have to correctly guess when a TSIG-signed request was sent, along with other characteristics of the packet and message, and spoof a truncated response to trigger an assertion failure, causing the server to exit.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

予約する

2020年02月05日

モデレーション

承諾済み

エントリ

2

リンクする

表示

EPSS

0.05545

アクティビティ

非常低い

ソース

Want to know what is going to be exploited?

We predict KEV entries!