CVE-2000-0887

BIND 8.2-8.2.2-P6 - Denial of Service via Compressed Zone Transfer Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0887. PoCs published by Fabio Pietrosanti.

AI-analyzed exploit summary The provided text describes a Denial of Service (DoS) vulnerability in BIND due to improper handling of Compressed Zone Transfer (ZXFR) requests. The exploit involves sending a crafted ZXFR query to a vulnerable BIND server, causing it to crash if the zone is not cached.

Description

named in BIND 8.2 through 8.2.2-P6 allows remote attackers to cause a denial of service by making a compressed zone transfer (ZXFR) request and performing a name service query on an authoritative record that is not cached, aka the "zxfr bug."

Exploits (1)

exploitdb WRITEUP VERIFIED
by Fabio Pietrosanti · textdoslinux
https://www.exploit-db.com/exploits/20388

The provided text describes a Denial of Service (DoS) vulnerability in BIND due to improper handling of Compressed Zone Transfer (ZXFR) requests. The exploit involves sending a crafted ZXFR query to a vulnerable BIND server, causing it to crash if the zone is not cached.

Classification
Writeup 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: BIND (versions supporting ZXFR, pre-2000)
No auth needed
Prerequisites: BIND server with zone transfers and recursive queries enabled
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (11)

Core 11
Core References
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2000-107.html
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/143843
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/5540
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1923
Various Sources vendor-advisory x_refsource_mandrake
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2000:067
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2000-11/0217.html
Vendor Advisory vendor-advisory x_refsource_conectiva
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000338
US Government Resource third-party-advisory x_refsource_cert
http://www.cert.org/advisories/CA-2000-20.html
Patch, Vendor Advisory vendor-advisory x_refsource_conectiva
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000339
Third Party Advisory vendor-advisory x_refsource_suse
http://archives.neohapsis.com/archives/linux/suse/2000-q4/0657.html
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2000/20001112

Scores

EPSS 0.2294
EPSS Percentile 97.5%

Details

Status published
Products (1)
isc/bind 8.2.2 p5
Published Dec 19, 2000
Tracked Since Feb 18, 2026