ISC BIND 9.10.0 Denial of Service Vulnerability

ISC BIND 9.10.0 Denial of Service Vulnerability

CVE-2014-3859 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

libdns in ISC BIND 9.10.0 before P2 does not properly handle EDNS options, which allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a crafted packet, as demonstrated by an attack against named, dig, or delv.

Learn more about our Cis Benchmark Audit For Bind.