CVE-2012-5688
ISC BIND 9.8.x < 9.8.4-P1 and 9.9.x < 9.9.2-P1 - Denial of Service via Crafted DNS64 Query
Title source: llmDescription
ISC BIND 9.8.x before 9.8.4-P1 and 9.9.x before 9.9.2-P1, when DNS64 is enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query.
References (6)
Core 6
Core References
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2012-1549.html
Third Party Advisory vendor-advisory
x_refsource_slackware
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2012&m=slackware-security.536004
Mailing List, Third Party Advisory vendor-advisory
x_refsource_apple
http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html
Third Party Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-1657-1
Patch, Vendor Advisory x_refsource_confirm
https://kb.isc.org/article/AA-00828
Third Party Advisory x_refsource_confirm
http://support.apple.com/kb/HT5880
Scores
EPSS
0.0793
EPSS Percentile
92.1%
Details
CWE
CWE-20
Status
published
Products (8)
canonical/ubuntu_linux
12.04
canonical/ubuntu_linux
12.10
isc/bind
9.8.0 (7 CPE variants)
isc/bind
9.8.1 (6 CPE variants)
isc/bind
9.8.2 (4 CPE variants)
isc/bind
9.8.3 (5 CPE variants)
isc/bind
9.9.0 (10 CPE variants)
isc/bind
9.9.1 (5 CPE variants)
Published
Dec 06, 2012
Tracked Since
Feb 18, 2026