CVE-2024-0760

HIGH

BIND <9.18.27-9.19.24 - DoS

Title source: llm

Description

A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0 through 9.19.24, and 9.18.11-S1 through 9.18.27-S1.

Exploits (1)

nomisec WORKING POC

by SpiralBL0CK · poc

https://github.com/SpiralBL0CK/CVE-2024-0760

View Code ZIP pw:eip

References (4)

[Various Sources] https://kb.isc.org/docs/cve-2024-0760

[Vendor Advisory] https://security.netapp.com/advisory/ntap-20240731-0004/

[Mailing List] http://www.openwall.com/lists/oss-security/2024/07/23/1

[Mailing List] http://www.openwall.com/lists/oss-security/2024/07/31/2

Scores

CVSS v3 7.5

EPSS 0.1562

EPSS Percentile 94.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-770

Status published

Products (3)

ISC/BIND 9 9.18.1 - 9.18.27

ISC/BIND 9 9.18.11-S1 - 9.18.27-S1

ISC/BIND 9 9.19.0 - 9.19.24

Published Jul 23, 2024

Tracked Since Feb 18, 2026