CVE-2012-3868
ISC BIND 9.9.x - Denial of Service via TCP Query Race Condition
Title source: llmDescription
Race condition in the ns_client structure management in ISC BIND 9.9.x before 9.9.1-P2 allows remote attackers to cause a denial of service (memory consumption or process exit) via a large volume of TCP queries.
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
x_refsource_slackware
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2012&m=slackware-security.536004
Vendor Advisory x_refsource_confirm
https://kb.isc.org/article/AA-00730
Scores
EPSS
0.0197
EPSS Percentile
83.8%
Details
CWE
CWE-362
Status
published
Products (2)
isc/bind
9.9.0 (10 CPE variants)
isc/bind
9.9.1 (2 CPE variants)
Published
Jul 25, 2012
Tracked Since
Feb 18, 2026