Test ID:	1.3.6.1.4.1.25623.1.0.813750
Category:	Denial of Service
Title:	ISC BIND 'deny-answer-aliases' Denial of Service Vulnerability
Summary:	ISC BIND is prone to a denial of service vulnerability.
Description:	Summary: ISC BIND is prone to a denial of service vulnerability. Vulnerability Insight: The flaw exists due to a defect in the feature 'deny-answer-aliases' which leads to assertion failure in 'name.c'. Vulnerability Impact: Successful exploitation will allow remote attackers to cause a denial of service (assertion failure). Affected Software/OS: ISC BIND versions 9.7.0 through 9.8.8, 9.9.0 through 9.9.13, 9.10.0 through 9.10.8, 9.11.0 through 9.11.4, 9.12.0 through 9.12.2 and 9.13.0 through 9.13.2. Solution: Update to ISC BIND version 9.9.13-P1 or 9.10.8-P1 or 9.11.4-P1 or 9.12.2-P1 or 9.11.3-S3 or later. Please see the references for more information. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2018-5740 BugTraq ID: 105055 http://www.securityfocus.com/bid/105055 https://security.gentoo.org/glsa/201903-13 https://lists.debian.org/debian-lts-announce/2018/08/msg00033.html https://lists.debian.org/debian-lts-announce/2021/11/msg00001.html RedHat Security Advisories: RHSA-2018:2570 https://access.redhat.com/errata/RHSA-2018:2570 RedHat Security Advisories: RHSA-2018:2571 https://access.redhat.com/errata/RHSA-2018:2571 http://www.securitytracker.com/id/1041436 SuSE Security Announcement: openSUSE-SU-2019:1532 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00026.html SuSE Security Announcement: openSUSE-SU-2019:1533 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00027.html https://usn.ubuntu.com/3769-1/ https://usn.ubuntu.com/3769-2/
Copyright	Copyright (C) 2018 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.