EIP-2026-103948

PRE-CVE

ISC BIND 4.9.7/8.x - Traffic Amplification and NS Route Discovery

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103948. PoCs published by Sebastian.

AI-analyzed exploit summary The document describes a DNS traffic amplification vulnerability in ISC BIND versions 4.9.7 through 8.2.2, where recursive queries can be exploited to generate excessive traffic, leading to potential denial of service. It explains the hierarchical DNS resolution process and how retries multiply traffic.

Description

ISC BIND 4.9.7/8.x - Traffic Amplification and NS Route Discovery

Exploits (1)

exploitdb WRITEUP VERIFIED

by Sebastian · textremotemultiple

https://www.exploit-db.com/exploits/19749

View Code ZIP pw:eip

The document describes a DNS traffic amplification vulnerability in ISC BIND versions 4.9.7 through 8.2.2, where recursive queries can be exploited to generate excessive traffic, leading to potential denial of service. It explains the hierarchical DNS resolution process and how retries multiply traffic.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Theoretical

Target: ISC BIND 4.9.7/8.1/8.1.1/8.1.2/8.2/8.2.1/8.2.2

No auth needed

Prerequisites: Access to a vulnerable DNS server · Ability to send crafted DNS queries

MITRE ATT&CK

T1498 - Network Denial of Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026