Test ID:	1.3.6.1.4.1.25623.1.0.104926
Category:	Denial of Service
Title:	ISC BIND DoS Vulnerability (CVE-2023-4236) - Windows
Summary:	ISC BIND is prone to a denial of service (DoS) vulnerability.
Description:	Summary: ISC BIND is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: A flaw in the networking code handling DNS-over-TLS queries may cause named to terminate unexpectedly due to an assertion failure. This happens when internal data structures are incorrectly reused under significant DNS-over-TLS query load. Vulnerability Impact: A named instance vulnerable to this flaw may terminate unexpectedly when subjected to significant DNS-over-TLS query load. This flaw does not affect DNS-over-HTTPS code, as that uses a different TLS implementation. Affected Software/OS: ISC BIND versions 9.18.0 through 9.18.18 and 9.18.11-S1 through 9.18.18-S1. Solution: Update to version 9.18.19, 9.18.19-S1 or later. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-4236 Debian Security Information: DSA-5504 (Google Search) https://www.debian.org/security/2023/dsa-5504 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U35OARLQCPMVCBBPHWBXY5M6XJLD2TZ5/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IPJLLTJCSDJJII7IIZPLTBQNWP7MZH7F/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VSK5V4W4OHPM3JTJGWAQD6CZW7SFD75B/ CVE-2023-4236 https://kb.isc.org/docs/cve-2023-4236 http://www.openwall.com/lists/oss-security/2023/09/20/2
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.