Vulnerability Details CVE-2018-5737
A problem with the implementation of the new serve-stale feature in BIND 9.12 can lead to an assertion failure in rbtdb.c, even when stale-answer-enable is off. Additionally, problematic interaction between the serve-stale feature and NSEC aggressive negative caching can in some cases cause undesirable behavior from named, such as a recursion loop or excessive logging. Deliberate exploitation of this condition could cause operational problems depending on the particular manifestation -- either degradation or denial of service. Affects BIND 9.12.0 and 9.12.1.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 76.2%
CVSS Severity
CVSS v3 Score 5.9
CVSS v2 Score 5.0
References
- http://www.securityfocus.com/bid/104236
- http://www.securitytracker.com/id/1040942
- https://kb.isc.org/docs/aa-01606
- https://security.netapp.com/advisory/ntap-20180926-0004/
- http://www.securityfocus.com/bid/104236
- http://www.securitytracker.com/id/1040942
- https://kb.isc.org/docs/aa-01606
- https://security.netapp.com/advisory/ntap-20180926-0004/
Products affected by CVE-2018-5737
-
cpe:2.3:a:isc:bind:9.12.0
-
cpe:2.3:a:isc:bind:9.12.1
-
cpe:2.3:a:netapp:cloud_backup:-
-
cpe:2.3:a:netapp:data_ontap_edge:-