D18-0nf01
CVSS:
7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
False Positive:
t
Variants:
2
Year:
2018
Description
This strike exploits a vulnerability in ISC's BIND DNS Server.
The vulnerability is due to improper handling of certain responses when BIND is configured to use the deny-answer-aliases feature.
A remote attacker could exploit this vulnerability by providing a specific response to a DNAME or ANY query to a vulnerable BIND server. Successful exploitation leads to denial-of-service conditions.