CVE-2011-2464

Published: Jul 8, 2011Modified: Apr 29, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Unspecified vulnerability in ISC BIND 9 9.6.x before 9.6-ESV-R4-P3, 9.7.x before 9.7.3-P3, and 9.8.x before 9.8.0-P4 allows remote attackers to cause a denial of service (named daemon crash) via a crafted UPDATE request.

Affected (41)

Products: Isc: Bind

Isc

1 product

Bind

Configuration A

14 vulnerable

Vulnerable Software	Affected Versions
Isc Bind	Version 9.6.0
Isc Bind	Version 9.6.0 p1
Isc Bind	Version 9.6.0 rc1
Isc Bind	Version 9.6.0 rc2
Isc Bind	Version 9.6.1
Isc Bind	Version 9.6.1 p1
Isc Bind	Version 9.6.1 p2
Isc Bind	Version 9.6.1 p3
Isc Bind	Version 9.6.1 rc1
Isc Bind	Version 9.6.2
Isc Bind	Version 9.6.2 rc1
Isc Bind	Version 9.6.3
Isc Bind	Version 9.6.3 rc1
Isc Bind	Version 9.6

Configuration B

20 vulnerable

Vulnerable Software	Affected Versions
Isc Bind	Version 9.7.0
Isc Bind	Version 9.7.0 b1
Isc Bind	Version 9.7.0 p1
Isc Bind	Version 9.7.0 p2
Isc Bind	Version 9.7.0 rc1
Isc Bind	Version 9.7.0 rc2
Isc Bind	Version 9.7.1
Isc Bind	Version 9.7.1 p1
Isc Bind	Version 9.7.1 p2
Isc Bind	Version 9.7.1 rc1
Isc Bind	Version 9.7.2
Isc Bind	Version 9.7.2 p1
Isc Bind	Version 9.7.2 p2
Isc Bind	Version 9.7.2 p3
Isc Bind	Version 9.7.2 rc1
Isc Bind	Version 9.7.2b1
Isc Bind	Version 9.7.3
Isc Bind	Version 9.7.3 b1
Isc Bind	Version 9.7.3 p1
Isc Bind	Version 9.7.3 rc1

Configuration C

7 vulnerable

Vulnerable Software	Affected Versions
Isc Bind	Version 9.8.0
Isc Bind	Version 9.8.0 a1
Isc Bind	Version 9.8.0 b1
Isc Bind	Version 9.8.0 p1
Isc Bind	Version 9.8.0 p2
Isc Bind	Version 9.8.0 rc1
Isc Bind	Version 9.8.1 b1

References (60)

http://blogs.oracle.com/sunsecurity/entry/cve_2011_2464_remote_denial

Source: cve@mitre.org

http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html

Source: cve@mitre.org

http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062522.html

Source: cve@mitre.org

http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062846.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00002.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00004.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00006.html

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=131983337229394&w=2

Source: cve@mitre.org

http://osvdb.org/73605

Source: cve@mitre.org

http://secunia.com/advisories/45082

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/45089

Source: cve@mitre.org

http://secunia.com/advisories/45143

Source: cve@mitre.org

http://secunia.com/advisories/45177

Source: cve@mitre.org

http://secunia.com/advisories/45185

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/45223

Source: cve@mitre.org

http://secunia.com/advisories/45410

Source: cve@mitre.org

http://secunia.com/advisories/45412

Source: cve@mitre.org

http://support.apple.com/kb/HT5002

Source: cve@mitre.org

http://www.debian.org/security/2011/dsa-2272

Source: cve@mitre.org

http://www.isc.org/software/bind/advisories/cve-2011-2464

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/142646

Source: cve@mitre.org

US Government Resource

http://www.mandriva.com/security/advisories?name=MDVSA-2011:115

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2011-0926.html

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/518749/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/48566

Source: cve@mitre.org

http://www.securitytracker.com/id?1025742

Source: cve@mitre.org

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.377171

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/68375

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13997

Source: cve@mitre.org

https://www.ubuntu.com/usn/USN-1163-1/

Source: cve@mitre.org

http://blogs.oracle.com/sunsecurity/entry/cve_2011_2464_remote_denial