ISC BIND up to 9.8.x Recursive Query Processor denial of service
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 5.7 | $0-$5k | 0.00 |
Summary
A vulnerability was found in ISC BIND up to 9.8.x. It has been classified as critical. Affected is an unknown function of the component Recursive Query Processor. Performing a manipulation results in denial of service. This vulnerability was named CVE-2011-4313. There is no available exploit. Upgrading the affected component is recommended.
Details
A vulnerability was found in ISC BIND up to 9.8.x (Domain Name Software). It has been classified as critical. This affects an unknown code block of the component Recursive Query Processor. The manipulation with an unknown input leads to a denial of service vulnerability. CWE is classifying the issue as CWE-404. The product does not release or incorrectly releases a resource before it is made available for re-use. This is going to have an impact on availability. The summary by CVE is:
query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service (assertion failure and named exit) via unknown vectors related to recursive DNS queries, error logging, and the caching of an invalid record by the resolver.
The weakness was presented 11/16/2011 with ISC (Website). It is possible to read the advisory at isc.org. This vulnerability is uniquely identified as CVE-2011-4313 since 11/04/2011. It is possible to initiate the attack remotely. No form of authentication is needed for exploitation. The technical details are unknown and an exploit is not publicly available.
We expect the 0-day to have been worth approximately $5k-$25k. The vulnerability scanner Nessus provides a plugin with the ID 74518 (openSUSE Security Update : bind (openSUSE-2011-13)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family SuSE Local Security Checks and running in the context l. The commercial vulnerability scanner Qualys is able to test this issue with plugin 15089 (ISC BIND 9.6-ESV-R9-P1 Not Installed).
Upgrading eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at isc.org. The best possible mitigation is suggested to be upgrading to the latest version. A possible mitigation has been published immediately after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at Tenable (74518), SecurityFocus (BID 50690†), OSVDB (77159†), Secunia (SA46887†) and SecurityTracker (ID 1026335†). See VDB-8997 for similar entry. Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Product
Type
Vendor
Name
Version
License
Website
- Vendor: https://www.isc.org/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 5.9VulDB Meta Temp Score: 5.7
VulDB Base Score: 5.9
VulDB Temp Score: 5.7
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Denial of serviceCWE: CWE-404
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 74518
Nessus Name: openSUSE Security Update : bind (openSUSE-2011-13)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Context: 🔍
Nessus Port: 🔍
OpenVAS ID: 70561
OpenVAS Name: Debian Security Advisory DSA 2347-1 (bind9)
OpenVAS File: 🔍
OpenVAS Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Patch: isc.org
Fortigate IPS: 🔍
Timeline
11/04/2011 🔍11/16/2011 🔍
11/16/2011 🔍
11/16/2011 🔍
11/16/2011 🔍
11/17/2011 🔍
11/21/2011 🔍
11/29/2011 🔍
06/13/2014 🔍
12/23/2024 🔍
Sources
Vendor: isc.orgAdvisory: isc.org
Organization: ISC
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2011-4313 (🔍)
GCVE (CVE): GCVE-0-2011-4313
GCVE (VulDB): GCVE-100-4443
OVAL: 🔍
CERT: 🔍
X-Force: 71332
SecurityFocus: 50690
Secunia: 46887 - ISC BIND Recursive Query Processing Denial of Service Vulnerability, Highly Critical
OSVDB: 77159
SecurityTracker: 1026335
Vulnerability Center: 33869 - ISC BIND 9 Resolver Crash after Logging an Error to Query.c due to Cache of Invalid Record, High
See also: 🔍
Entry
Created: 11/21/2011 01:00Updated: 12/23/2024 11:52
Changes: 11/21/2011 01:00 (79), 04/05/2017 14:48 (6), 03/19/2021 18:06 (4), 03/19/2021 18:10 (2), 03/19/2021 18:14 (1), 12/23/2024 11:52 (18)
Complete: 🔍
Cache ID: 216:9BA:103
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.