ID de Prueba:	1.3.6.1.4.1.25623.1.0.153894
Categoría:	Denial of Service
Título:	ISC BIND DoS Vulnerability (CVE-2024-12705) - Windows
Resumen:	ISC BIND is prone to a denial of service (DoS); vulnerability in the DNS-over-HTTPS implementation.
Descripción:	Summary: ISC BIND is prone to a denial of service (DoS) vulnerability in the DNS-over-HTTPS implementation. Vulnerability Insight: Clients using DNS-over-HTTPS (DoH) can exhaust a DNS resolver's CPU and/or memory by flooding it with crafted valid or invalid HTTP/2 traffic. Vulnerability Impact: By flooding a target resolver with HTTP/2 traffic and exploiting this flaw, an attacker could overwhelm the server, causing high CPU and/or memory usage and preventing other clients from establishing DoH connections. This would significantly impair the resolver's performance and effectively deny legitimate clients access to the DNS resolution service. - Authoritative servers are affected by this vulnerability. - Resolvers are affected by this vulnerability. Affected Software/OS: ISC BIND version 9.18.0 through 9.18.32, 9.20.0 through 9.20.4, 9.21.0 through 9.21.3 and 9.18.11-S1 through 9.18.32-S1. Solution: Update to version 9.18.33, 9.20.5, 9.21.4, 9.18.33-S1 or later. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2024-12705
Copyright	Copyright (C) 2025 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.