CVE-2006-4095

Published: Sep 6, 2006Modified: Apr 16, 2026

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via certain SIG queries, which cause an assertion failure when multiple RRsets are returned.

Affected (9)

Products: Isc: Bind · Canonical: Ubuntu Linux · Apple: Mac Os X, Mac Os X Server

1 product

1 product

2 products

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Isc Bind	Up to 9.2.6
Isc Bind	From 9.3.0 to 9.3.2

Configuration B

3 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 5.04
Canonical Ubuntu Linux	Version 5.10
Canonical Ubuntu Linux	Version 6.06

Configuration C

4 vulnerable

Vulnerable Software	Affected Versions
Apple Mac Os X	Before 10.3.9
Apple Mac Os X	From 10.4.0 to 10.4.9
Apple Mac Os X Server	Before 10.3.9
Apple Mac Os X Server	From 10.4.0 to 10.4.9

Related CWEs

CWE-617

Reachable Assertion

The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

References (70)

http://docs.info.apple.com/article.html?artnum=305530

Source: cve@mitre.org

Broken Link

http://lists.apple.com/archives/security-announce/2007/May/msg00004.html

Source: cve@mitre.org

Mailing List

http://secunia.com/advisories/21752

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/21786

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/21816

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/21818

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/21828

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/21835

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/21838

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/21912

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/21926

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/22298

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/24950

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/25402

Source: cve@mitre.org

Broken Link

http://security.freebsd.org/advisories/FreeBSD-SA-06:20.bind.asc

Source: cve@mitre.org

Third Party Advisory

http://security.gentoo.org/glsa/glsa-200609-11.xml

Source: cve@mitre.org

Third Party Advisory

http://securitytracker.com/id?1016794

Source: cve@mitre.org

Broken LinkThird Party AdvisoryVDB Entry

http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.481241

Source: cve@mitre.org

Broken Link

http://www.kb.cert.org/vuls/id/915404

Source: cve@mitre.org

PatchThird Party AdvisoryUS Government Resource

http://www.mandriva.com/security/advisories?name=MDKSA-2006:163

Source: cve@mitre.org

Broken Link

http://www.niscc.gov.uk/niscc/docs/re-20060905-00590.pdf?lang=en

Source: cve@mitre.org

Broken LinkPatch

http://www.novell.com/linux/security/advisories/2006_23_sr.html

Source: cve@mitre.org

Broken Link

http://www.novell.com/linux/security/advisories/2006_24_sr.html

Source: cve@mitre.org

Broken Link

http://www.openbsd.org/errata.html

Source: cve@mitre.org

Release Notes

http://www.openpkg.com/security/advisories/OpenPKG-SA-2006.019.html

Source: cve@mitre.org

Broken Link

http://www.securityfocus.com/archive/1/445600/100/0/threaded

Source: cve@mitre.org

Broken LinkThird Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/19859

Source: cve@mitre.org

Broken LinkThird Party AdvisoryVDB Entry

http://www.ubuntu.com/usn/usn-343-1

Source: cve@mitre.org

Third Party Advisory

http://www.us.debian.org/security/2006/dsa-1172

Source: cve@mitre.org

Broken Link

http://www.vupen.com/english/advisories/2006/3473

Source: cve@mitre.org

Broken Link

http://www.vupen.com/english/advisories/2007/1401

Source: cve@mitre.org

Broken Link

http://www.vupen.com/english/advisories/2007/1939

Source: cve@mitre.org

Broken Link

https://exchange.xforce.ibmcloud.com/vulnerabilities/28745

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

https://issues.rpath.com/browse/RPL-626

Source: cve@mitre.org

Broken Link

https://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00967144

Source: cve@mitre.org

Broken Link

http://docs.info.apple.com/article.html?artnum=305530