CVE-2012-3868

medium

Description

Race condition in the ns_client structure management in ISC BIND 9.9.x before 9.9.1-P2 allows remote attackers to cause a denial of service (memory consumption or process exit) via a large volume of TCP queries.

References

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2012&m=slackware-security.536004

https://kb.isc.org/article/AA-00730

Details

Source: MITRE

Published: 2012-07-25

Updated: 2013-11-25

Type: CWE-362

Risk Information

CVSS v2

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM