CVE-1999-0024

BIND - DNS Cache Poisoning via Predictable Query IDs

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0024. PoCs published by HORKimhab.

AI-analyzed exploit summary The repository contains a placeholder markdown file for CVE-1999-0024, a DNS cache poisoning vulnerability in BIND due to predictable query IDs. The file lacks any functional exploit code, technical analysis, or proof-of-concept details.

Description

DNS cache poisoning via BIND, by predictable query IDs.

Exploits (1)

github STUB
by HORKimhab · shellpoc
https://github.com/HORKimhab/poc-cve-collection/tree/main/1999/0xxx/CVE-1999-0024.md

The repository contains a placeholder markdown file for CVE-1999-0024, a DNS cache poisoning vulnerability in BIND due to predictable query IDs. The file lacks any functional exploit code, technical analysis, or proof-of-concept details.

Classification
Stub 95%
Attack Type
Other
Complexity
Moderate
Reliability
Theoretical
Target: BIND (Berkeley Internet Name Domain) versions vulnerable to predictable query ID generation
No auth needed
Prerequisites: Access to a network where DNS queries can be intercepted or spoofed · Predictable query ID generation in the target BIND server
mistral-large-3 · analyzed Jul 14, 2026 Full analysis →

References (1)

Core 1
Core References
Third Party Advisory, VDB Entry x_refsource_misc
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0024

Scores

EPSS 0.0493
EPSS Percentile 91.1%

Details

Status published
Products (23)
bsdi/bsd_os 2.1
bsdi/bsd_os 3.0
ibm/aix 4.1
ibm/aix 4.2
isc/bind 4.9.5
isc/bind 8.1
nec/asl_ux_4800 64
nec/ews-ux_v 4.2
nec/ews-ux_v 4.2mp
nec/up-ux_v 4.2mp
... and 13 more
Published Aug 13, 1997
Tracked Since Feb 18, 2026