CVE-2008-4163

Published: Sep 22, 2008Modified: Apr 23, 2026

7.8

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability: 10.0 / Impact: 6.9

Source: NVD

Description

Unspecified vulnerability in ISC BIND 9.3.5-P2-W1, 9.4.2-P2-W1, and 9.5.0-P2-W1 on Windows allows remote attackers to cause a denial of service (UDP client handler termination) via unknown vectors.

Affected (3)

Products: Isc: Bind

Isc

1 product

Bind

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Isc Bind	Version 9.3.5 p2_w1
Isc Bind	Version 9.4.2 p2_w1
Isc Bind	Version 9.5.0 p2_w1

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (16)

http://marc.info/?l=bind-announce&m=122180244228376&w=2

Source: cve@mitre.org

http://marc.info/?l=bind-announce&m=122180244228378&w=2

Source: cve@mitre.org

http://marc.info/?l=bind-announce&m=122180376630150&w=2

Source: cve@mitre.org

http://secunia.com/advisories/31924

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/31252

Source: cve@mitre.org

http://www.securitytracker.com/id?1020901

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2008/2637

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/45234

Source: cve@mitre.org

http://marc.info/?l=bind-announce&m=122180244228376&w=2