Vulnerability Details CVE-2010-0218
ISC BIND 9.7.2 through 9.7.2-P1 uses an incorrect ACL to restrict the ability of Recursion Desired (RD) queries to access the cache, which allows remote attackers to obtain potentially sensitive information via a DNS query.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.021
EPSS Ranking 83.3%
CVSS Severity
CVSS v2 Score 5.0
References
- http://ftp.isc.org/isc/bind9/9.7.2-P2/RELEASE-NOTES-BIND-9.7.2-P2.html
- http://www.kb.cert.org/vuls/id/784855
- https://lists.isc.org/pipermail/bind-announce/2010-September/000655.html
- http://ftp.isc.org/isc/bind9/9.7.2-P2/RELEASE-NOTES-BIND-9.7.2-P2.html
- http://www.kb.cert.org/vuls/id/784855
- https://lists.isc.org/pipermail/bind-announce/2010-September/000655.html