National Vulnerability Database (NVD) National Vulnerability Database (CVE-2011-4313)

National Cyber Awareness System

Vulnerability Summary for CVE-2011-4313

Original release date:11/29/2011

Last revised:11/06/2012

Source: US-CERT/NIST

Overview

query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service (assertion failure and named exit) via unknown vectors related to recursive DNS queries, error logging, and the caching of an invalid record by the resolver.

Impact

CVSS Severity (version 2.0):

CVSS v2 Base Score:5.0 (MEDIUM) (AV:N/AC:L/Au:N/C:N/I:N/A:P) (legend)

Impact Subscore: 2.9

Exploitability Subscore: 10.0

CVSS Version 2 Metrics:

Access Vector: Network exploitable

Access Complexity: Low

Authentication: Not required to exploit

Impact Type:Allows disruption of serviceUnknown

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

US-CERT Vulnerability Note: VU#606539

Name: VU#606539

Hyperlink:http://www.kb.cert.org/vuls/id/606539

External Source: CONFIRM

Name: http://www.isc.org/software/bind/advisories/cve-2011-4313

Type: Advisory; Patch Information

Hyperlink:http://www.isc.org/software/bind/advisories/cve-2011-4313

External Source: XF

Name: isc-bind-recursive-dos(71332)

Hyperlink:http://xforce.iss.net/xforce/xfdb/71332

External Source: UBUNTU

Name: USN-1264-1

Hyperlink:http://www.ubuntu.com/usn/USN-1264-1

External Source: SECTRACK

Name: 1026335

Hyperlink:http://www.securitytracker.com/id?1026335

External Source: BID

Name: 50690

Hyperlink:http://www.securityfocus.com/bid/50690

External Source: REDHAT

Name: RHSA-2011:1496

Hyperlink:http://www.redhat.com/support/errata/RHSA-2011-1496.html

External Source: REDHAT

Name: RHSA-2011:1459

Hyperlink:http://www.redhat.com/support/errata/RHSA-2011-1459.html

External Source: REDHAT

Name: RHSA-2011:1458

Hyperlink:http://www.redhat.com/support/errata/RHSA-2011-1458.html

External Source: MANDRIVA

Name: MDVSA-2011:176

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2011:176

External Source: AIXAPAR

Name: IV11248

Hyperlink:http://www.ibm.com/support/docview.wss?uid=isg1IV11248

External Source: DEBIAN

Name: DSA-2347

Hyperlink:http://www.debian.org/security/2011/dsa-2347

External Source: AIXAPAR

Name: IV11106

Hyperlink:http://www-01.ibm.com/support/docview.wss?uid=isg1IV11106

External Source: CONFIRM

Name: http://support.apple.com/kb/HT5501

Hyperlink:http://support.apple.com/kb/HT5501

External Source: FREEBSD

Name: FreeBSD-SA-11:06

Hyperlink:http://security.freebsd.org/advisories/FreeBSD-SA-11:06.bind.asc

External Source: SECUNIA

Name: 47075

Hyperlink:http://secunia.com/advisories/47075

External Source: SECUNIA

Name: 47043

Type: Advisory

Hyperlink:http://secunia.com/advisories/47043

External Source: SECUNIA

Name: 46984

Type: Advisory

Hyperlink:http://secunia.com/advisories/46984

External Source: SECUNIA

Name: 46943

Type: Advisory

Hyperlink:http://secunia.com/advisories/46943

External Source: SECUNIA

Name: 46906

Type: Advisory

Hyperlink:http://secunia.com/advisories/46906

External Source: SECUNIA

Name: 46905

Type: Advisory

Hyperlink:http://secunia.com/advisories/46905

External Source: SECUNIA

Name: 46890

Type: Advisory

Hyperlink:http://secunia.com/advisories/46890

External Source: SECUNIA

Name: 46887

Type: Advisory

Hyperlink:http://secunia.com/advisories/46887

External Source: SECUNIA

Name: 46829

Type: Advisory

Hyperlink:http://secunia.com/advisories/46829

External Source: SECUNIA

Name: 46536

Type: Advisory

Hyperlink:http://secunia.com/advisories/46536

External Source: OVAL

Name: oval:org.mitre.oval:def:14343

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14343

External Source: OSVDB

Name: 77159

Hyperlink:http://osvdb.org/77159

External Source: HP

Name: SSRT100687

Hyperlink:http://marc.info/?l=bugtraq&m=132310123002302&w=2

External Source: HP

Name: HPSBUX02729

Hyperlink:http://marc.info/?l=bugtraq&m=132310123002302&w=2

External Source: SUSE

Name: openSUSE-SU-2011:1272

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00029.html

External Source: SUSE

Name: SUSE-SU-2011:1270

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00028.html

External Source: SUSE

Name: SUSE-SU-2011:1268

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00027.html

External Source: FEDORA

Name: FEDORA-2011-16036

Hyperlink:http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069975.html

External Source: FEDORA

Name: FEDORA-2011-16002

Hyperlink:http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069970.html

External Source: FEDORA

Name: FEDORA-2011-16057

Hyperlink:http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069463.html

External Source: APPLE

Name: APPLE-SA-2012-09-19-2

Hyperlink:http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html

External Source: CONFIRM

Name: http://blogs.oracle.com/sunsecurity/entry/cve_2011_4313_denial_of

Hyperlink:http://blogs.oracle.com/sunsecurity/entry/cve_2011_4313_denial_of

Vulnerable software and versions

Configuration 1

* cpe:/a:isc:bind:9.6.0:rc1

* cpe:/a:isc:bind:9.6.0b1

* cpe:/a:isc:bind:9.6.0a1

* cpe:/a:isc:bind:9.5.0-p1

* cpe:/a:isc:bind:9.5

* cpe:/a:isc:bind:9.5.0b1

* cpe:/a:isc:bind:9.5.0a7

* cpe:/a:isc:bind:9.5.0a6

* cpe:/a:isc:bind:9.5.0a5

* cpe:/a:isc:bind:9.5.0a4

* cpe:/a:isc:bind:9.5.0a3

* cpe:/a:isc:bind:9.5.0a2

* cpe:/a:isc:bind:9.5.0a1

* cpe:/a:isc:bind:9.5.0

* cpe:/a:isc:bind:9.2.0:rc1

* cpe:/a:isc:bind:9.2.0:b2

* cpe:/a:isc:bind:9.2.0:b1

* cpe:/a:isc:bind:9.2.0:a3

* cpe:/a:isc:bind:9.2.0:a2

* cpe:/a:isc:bind:9.2.0:a1

* cpe:/a:isc:bind:9.1.0b2

* cpe:/a:isc:bind:9.1.0b1

* cpe:/a:isc:bind:9.0.0b4

* cpe:/a:isc:bind:9.0.0b3

* cpe:/a:isc:bind:9.0.0b2

* cpe:/a:isc:bind:9.0

* cpe:/a:isc:bind:9.0.1

* cpe:/a:isc:bind:9.0.0:rc1

* cpe:/a:isc:bind:9.0.0:rc2

* cpe:/a:isc:bind:9.0.0b1

* cpe:/a:isc:bind:9.0.0b5

* cpe:/a:isc:bind:9.0.0:rc4

* cpe:/a:isc:bind:9.0.0:rc5

* cpe:/a:isc:bind:9.0.0:rc3

* cpe:/a:isc:bind:9.0.1:rc2

* cpe:/a:isc:bind:9.0.0:rc6

* cpe:/a:isc:bind:9.0.1:rc1

* cpe:/a:isc:bind:9.1.3p2

* cpe:/a:isc:bind:9.1.2:rc1

* cpe:/a:isc:bind:9.1.1:rc7

* cpe:/a:isc:bind:9.1.1:rc6

* cpe:/a:isc:bind:9.1.3:rc3

* cpe:/a:isc:bind:9.1.3:rc2

* cpe:/a:isc:bind:9.1.3:rc1

* cpe:/a:isc:bind:9.1.3p3

* cpe:/a:isc:bind:9.1.0:rc1

* cpe:/a:isc:bind:9.1.1:rc1

* cpe:/a:isc:bind:9.1.0b3

* cpe:/a:isc:bind:9.1.1:rc4

* cpe:/a:isc:bind:9.1.1

* cpe:/a:isc:bind:9.1.2

* cpe:/a:isc:bind:9.1.1:rc5

* cpe:/a:isc:bind:9.1.3

* cpe:/a:isc:bind:9.1.1:rc2

* cpe:/a:isc:bind:9.1.1:rc3

* cpe:/a:isc:bind:9.1

* cpe:/a:isc:bind:9.2.0

* cpe:/a:isc:bind:9.2.1

* cpe:/a:isc:bind:9.2.2

* cpe:/a:isc:bind:9.2.2:p3

* cpe:/a:isc:bind:9.2

* cpe:/a:isc:bind:9.2.7

* cpe:/a:isc:bind:9.2.6

* cpe:/a:isc:bind:9.2.5

* cpe:/a:isc:bind:9.2.4

* cpe:/a:isc:bind:9.2.3

* cpe:/a:isc:bind:9.3.3

* cpe:/a:isc:bind:9.3.2

* cpe:/a:isc:bind:9.3.1

* cpe:/a:isc:bind:9.3.0

* cpe:/a:isc:bind:9.3

* cpe:/a:isc:bind:9.4.2

* cpe:/a:isc:bind:9.4.3

* cpe:/a:isc:bind:9.4.3b3

* cpe:/a:isc:bind:9.4.3:rc1

* cpe:/a:isc:bind:9.4.3b1

* cpe:/a:isc:bind:9.4.3b2

* cpe:/a:isc:bind:9.4.0a4

* cpe:/a:isc:bind:9.4.0a3

* cpe:/a:isc:bind:9.4.0a2

* cpe:/a:isc:bind:9.4.0a1

* cpe:/a:isc:bind:9.4.0

* cpe:/a:isc:bind:9.4

* cpe:/a:isc:bind:9.4.0:rc1

* cpe:/a:isc:bind:9.4.1

* cpe:/a:isc:bind:9.4.0b3

* cpe:/a:isc:bind:9.4.0b4

* cpe:/a:isc:bind:9.4.0b1

* cpe:/a:isc:bind:9.4.0b2

* cpe:/a:isc:bind:9.4.0a5

* cpe:/a:isc:bind:9.4.0a6

* cpe:/a:isc:bind:9.5.1:rc2

* cpe:/a:isc:bind:9.5.0-p2

* cpe:/a:isc:bind:9.5.0-p2-w2

* cpe:/a:isc:bind:9.5.0-p2-w1

* cpe:/a:isc:bind:9.5.1

* cpe:/a:isc:bind:9.5.0:rc1

* cpe:/a:isc:bind:9.5.0b3

* cpe:/a:isc:bind:9.5.0b2

* cpe:/a:isc:bind:9.5.1:rc1

* cpe:/a:isc:bind:9.5.1b3

* cpe:/a:isc:bind:9.5.1b2

* cpe:/a:isc:bind:9.5.1b1

* cpe:/a:isc:bind:9.6.0:p1

* cpe:/a:isc:bind:9.6.0:rc2

* cpe:/a:isc:bind:9.6.0

* cpe:/a:isc:bind:9.6.1:p1

* cpe:/a:isc:bind:9.6.1

* cpe:/a:isc:bind:9.6-esv-r4-p1

* cpe:/a:isc:bind:9.6-esv-r5b1

* cpe:/a:isc:bind:9.6.3

* cpe:/a:isc:bind:9.6.3b1

* cpe:/a:isc:bind:9.6.3:rc1

* cpe:/a:isc:bind:9.6-esv-r4

* cpe:/a:isc:bind:9.6-esv

* cpe:/a:isc:bind:9.6-esv-r3

* cpe:/a:isc:bind:9.6.2:rc1

* cpe:/a:isc:bind:9.6.2b1

* cpe:/a:isc:bind:9.6.1:rc1

* cpe:/a:isc:bind:9.6.1b1

* cpe:/a:isc:bind:9.6.2

* cpe:/a:isc:bind:9.6.2-p3

* cpe:/a:isc:bind:9.6.1:p3

* cpe:/a:isc:bind:9.6.1:p2

* cpe:/a:isc:bind:9.6.2-p1

* cpe:/a:isc:bind:9.6-esv-r2

* cpe:/a:isc:bind:9.6.2-p2

* cpe:/a:isc:bind:9.6-esv-r1

* cpe:/a:isc:bind:9.5.0-p2-w1:windows

* cpe:/a:isc:bind:9.5.1p3

* cpe:/a:isc:bind:9.5.2p2

* cpe:/a:isc:bind:9.5.2b1

* cpe:/a:isc:bind:9.5.2:rc1

* cpe:/a:isc:bind:9.5.2

* cpe:/a:isc:bind:9.5.2p1

* cpe:/a:isc:bind:9.5.0a1::bind_forum

* cpe:/a:isc:bind:9.5.1p2

* cpe:/a:isc:bind:9.5.1p1

Configuration 2

* cpe:/a:isc:bind:9.7.0:rc1

* cpe:/a:isc:bind:9.7.0b3

* cpe:/a:isc:bind:9.7.0b2

* cpe:/a:isc:bind:9.7.0b1

* cpe:/a:isc:bind:9.7.0a3

* cpe:/a:isc:bind:9.7.0a2

* cpe:/a:isc:bind:9.7.0

* cpe:/a:isc:bind:9.7.0a1

* cpe:/a:isc:bind:9.7.2-p2

* cpe:/a:isc:bind:9.7.2-p3

* cpe:/a:isc:bind:9.7.1-p2

* cpe:/a:isc:bind:9.7.0:rc2

* cpe:/a:isc:bind:9.7.1:rc1

* cpe:/a:isc:bind:9.7.1b1

* cpe:/a:isc:bind:9.7.1

* cpe:/a:isc:bind:9.7.1-p1

* cpe:/a:isc:bind:9.7.3:rc1

* cpe:/a:isc:bind:9.7.4:b1

* cpe:/a:isc:bind:9.7.3:p1

* cpe:/a:isc:bind:9.7.3:b1

* cpe:/a:isc:bind:9.7.0:p1

* cpe:/a:isc:bind:9.7.0:p2

* cpe:/a:isc:bind:9.7.1:p1

* cpe:/a:isc:bind:9.7.3

* cpe:/a:isc:bind:9.7.2:p1

* cpe:/a:isc:bind:9.7.1:p2

* cpe:/a:isc:bind:9.7.2:p3

* cpe:/a:isc:bind:9.7.2:p2

* cpe:/a:isc:bind:9.7.0:beta

* cpe:/a:isc:bind:9.7.2:rc1

* cpe:/a:isc:bind:9.7.0-p1

* cpe:/a:isc:bind:9.7.0-p2

* cpe:/a:isc:bind:9.7.2

* cpe:/a:isc:bind:9.7.2rc1

* cpe:/a:isc:bind:9.7.2b1

* cpe:/a:isc:bind:9.7.4b1

* cpe:/a:isc:bind:9.7.4

* cpe:/a:isc:bind:9.7.2-p1

Configuration 3

* cpe:/a:isc:bind:9.8.1

* cpe:/a:isc:bind:9.8.1:rc1

* cpe:/a:isc:bind:9.8.1:b3

* cpe:/a:isc:bind:9.8.1:b2

* cpe:/a:isc:bind:9.8.1:b1

* cpe:/a:isc:bind:9.8.0

* cpe:/a:isc:bind:9.8.0:rc1

* cpe:/a:isc:bind:9.8.0:b1

* cpe:/a:isc:bind:9.8.0:a1

* cpe:/a:isc:bind:9.8.0:p2

* cpe:/a:isc:bind:9.8.0:p1

* cpe:/a:isc:bind:9.8.0:p4

* cpe:/a:isc:bind:9.9.0:b1

* cpe:/a:isc:bind:9.9.0:a3

* cpe:/a:isc:bind:9.9.0:a2

* cpe:/a:isc:bind:9.9.0:a1

* Denotes Vulnerable Software

Technical Details

Vulnerability Type (View All)

Insufficient Information (NVD-CWE-noinfo)

CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313