CVE-1999-0848

BIND - Denial of Service via File Descriptor Exhaustion

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0848. PoCs published by ADM Crew.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in BIND versions prior to 8.2.2 via malformed NXT records, allowing remote code execution. It includes shellcode for multiple architectures (Linux, Solaris/SPARC, BSD) to break chroot and execute commands.

Description

Denial of service in BIND named via consuming more than "fdmax" file descriptors.

Exploits (1)

exploitdb WORKING POC VERIFIED

by ADM Crew · cdosunix

https://www.exploit-db.com/exploits/19615

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in BIND versions prior to 8.2.2 via malformed NXT records, allowing remote code execution. It includes shellcode for multiple architectures (Linux, Solaris/SPARC, BSD) to break chroot and execute commands.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: ISC BIND < 8.2.2

No auth needed

Prerequisites: Network access to vulnerable BIND server · BIND running as root (default)

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Various Sources vendor-advisory x_refsource_caldera

ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-1999-034.1.txt

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/788

Vendor Advisory vendor-advisory x_refsource_sun

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/194

Scores

EPSS 0.0639

EPSS Percentile 92.8%

Details

Status published

Products (4)

isc/bind 8.2

isc/bind 8.2.1

sun/solaris 7.0

sun/sunos 5.7

Published Nov 10, 1999

Tracked Since Feb 18, 2026