5
CVE-2006-0987
- EPSS 57.26%
- Veröffentlicht 03.03.2006 11:02:00
- Zuletzt bearbeitet 16.06.2026 22:21:47
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses, which allows remote attackers to cause a denial of service (traffic amplification) via DNS queries with spoofed source IP addresses.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 57.26% | 0.989 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
http://dns.measurement-factory.com/surveys/sum1.html
http://kb.isc.org/article/AA-00269
http://www.securityfocus.com/archive/1/426368/100/0/threaded
http://www.us-cert.gov/reading_room/DNS-recursion121605.pdf