Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2018-5740

"deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potential method of circumventing the security model used by client browsers. However, a defect in this feature makes it easy, when the feature is in use, to experience an assertion failure in name.c. Affects BIND 9.7.0->9.8.8, 9.9.0->9.9.13, 9.10.0->9.10.8, 9.11.0->9.11.4, 9.12.0->9.12.2, 9.13.0->9.13.2.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.583
EPSS Ranking 98.0%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2018-5740
  • Isc » Bind » Version: 9.10.0
    cpe:2.3:a:isc:bind:9.10.0
  • Isc » Bind » Version: 9.10.1
    cpe:2.3:a:isc:bind:9.10.1
  • Isc » Bind » Version: 9.10.2
    cpe:2.3:a:isc:bind:9.10.2
  • Isc » Bind » Version: 9.10.3
    cpe:2.3:a:isc:bind:9.10.3
  • Isc » Bind » Version: 9.10.4
    cpe:2.3:a:isc:bind:9.10.4
  • Isc » Bind » Version: 9.10.5
    cpe:2.3:a:isc:bind:9.10.5
  • Isc » Bind » Version: 9.10.6
    cpe:2.3:a:isc:bind:9.10.6
  • Isc » Bind » Version: 9.10.7
    cpe:2.3:a:isc:bind:9.10.7
  • Isc » Bind » Version: 9.11.0
    cpe:2.3:a:isc:bind:9.11.0
  • Isc » Bind » Version: 9.11.1
    cpe:2.3:a:isc:bind:9.11.1
  • Isc » Bind » Version: 9.11.2
    cpe:2.3:a:isc:bind:9.11.2
  • Isc » Bind » Version: 9.11.3
    cpe:2.3:a:isc:bind:9.11.3
  • Isc » Bind » Version: 9.12.0
    cpe:2.3:a:isc:bind:9.12.0
  • Isc » Bind » Version: 9.12.1
    cpe:2.3:a:isc:bind:9.12.1
  • Isc » Bind » Version: 9.13.0
    cpe:2.3:a:isc:bind:9.13.0
  • Isc » Bind » Version: 9.13.1
    cpe:2.3:a:isc:bind:9.13.1
  • Isc » Bind » Version: 9.7.0
    cpe:2.3:a:isc:bind:9.7.0
  • Isc » Bind » Version: 9.7.0a1
    cpe:2.3:a:isc:bind:9.7.0a1
  • Isc » Bind » Version: 9.7.0a2
    cpe:2.3:a:isc:bind:9.7.0a2
  • Isc » Bind » Version: 9.7.0a3
    cpe:2.3:a:isc:bind:9.7.0a3
  • Isc » Bind » Version: 9.7.0b1
    cpe:2.3:a:isc:bind:9.7.0b1
  • Isc » Bind » Version: 9.7.0b2
    cpe:2.3:a:isc:bind:9.7.0b2
  • Isc » Bind » Version: 9.7.0b3
    cpe:2.3:a:isc:bind:9.7.0b3
  • Isc » Bind » Version: 9.7.1
    cpe:2.3:a:isc:bind:9.7.1
  • Isc » Bind » Version: 9.7.1b1
    cpe:2.3:a:isc:bind:9.7.1b1
  • Isc » Bind » Version: 9.7.2
    cpe:2.3:a:isc:bind:9.7.2
  • Isc » Bind » Version: 9.7.3
    cpe:2.3:a:isc:bind:9.7.3
  • Isc » Bind » Version: 9.7.4
    cpe:2.3:a:isc:bind:9.7.4
  • Isc » Bind » Version: 9.7.4b1
    cpe:2.3:a:isc:bind:9.7.4b1
  • Isc » Bind » Version: 9.7.5
    cpe:2.3:a:isc:bind:9.7.5
  • Isc » Bind » Version: 9.7.6
    cpe:2.3:a:isc:bind:9.7.6
  • Isc » Bind » Version: 9.7.7
    cpe:2.3:a:isc:bind:9.7.7
  • Isc » Bind » Version: 9.8.0
    cpe:2.3:a:isc:bind:9.8.0
  • Isc » Bind » Version: 9.8.1
    cpe:2.3:a:isc:bind:9.8.1
  • Isc » Bind » Version: 9.8.2
    cpe:2.3:a:isc:bind:9.8.2
  • Isc » Bind » Version: 9.8.3
    cpe:2.3:a:isc:bind:9.8.3
  • Isc » Bind » Version: 9.8.4
    cpe:2.3:a:isc:bind:9.8.4
  • Isc » Bind » Version: 9.8.5
    cpe:2.3:a:isc:bind:9.8.5
  • Isc » Bind » Version: 9.8.6
    cpe:2.3:a:isc:bind:9.8.6
  • Isc » Bind » Version: 9.8.7
    cpe:2.3:a:isc:bind:9.8.7
  • Isc » Bind » Version: 9.9.0
    cpe:2.3:a:isc:bind:9.9.0
  • Isc » Bind » Version: 9.9.1
    cpe:2.3:a:isc:bind:9.9.1
  • Isc » Bind » Version: 9.9.10
    cpe:2.3:a:isc:bind:9.9.10
  • Isc » Bind » Version: 9.9.11
    cpe:2.3:a:isc:bind:9.9.11
  • Isc » Bind » Version: 9.9.12
    cpe:2.3:a:isc:bind:9.9.12
  • Isc » Bind » Version: 9.9.2
    cpe:2.3:a:isc:bind:9.9.2
  • Isc » Bind » Version: 9.9.3
    cpe:2.3:a:isc:bind:9.9.3
  • Isc » Bind » Version: 9.9.4
    cpe:2.3:a:isc:bind:9.9.4
  • Isc » Bind » Version: 9.9.4-65
    cpe:2.3:a:isc:bind:9.9.4-65
  • Isc » Bind » Version: 9.9.4-72
    cpe:2.3:a:isc:bind:9.9.4-72
  • Isc » Bind » Version: 9.9.5
    cpe:2.3:a:isc:bind:9.9.5
  • Isc » Bind » Version: 9.9.6
    cpe:2.3:a:isc:bind:9.9.6
  • Isc » Bind » Version: 9.9.7
    cpe:2.3:a:isc:bind:9.9.7
  • Isc » Bind » Version: 9.9.8
    cpe:2.3:a:isc:bind:9.9.8
  • Isc » Bind » Version: 9.9.9
    cpe:2.3:a:isc:bind:9.9.9
  • Netapp » Data Ontap Edge » Version: N/A
    cpe:2.3:a:netapp:data_ontap_edge:-
  • Canonical » Ubuntu Linux » Version: 12.04
    cpe:2.3:o:canonical:ubuntu_linux:12.04
  • Canonical » Ubuntu Linux » Version: 14.04
    cpe:2.3:o:canonical:ubuntu_linux:14.04
  • Canonical » Ubuntu Linux » Version: 16.04
    cpe:2.3:o:canonical:ubuntu_linux:16.04
  • Canonical » Ubuntu Linux » Version: 18.04
    cpe:2.3:o:canonical:ubuntu_linux:18.04
  • Debian » Debian Linux » Version: 8.0
    cpe:2.3:o:debian:debian_linux:8.0
  • Debian » Debian Linux » Version: 9.0
    cpe:2.3:o:debian:debian_linux:9.0
  • Hp » Hp-Ux » Version: N/A
    cpe:2.3:o:hp:hp-ux:-
  • Opensuse » Leap » Version: 15.0
    cpe:2.3:o:opensuse:leap:15.0
  • Opensuse » Leap » Version: 15.1
    cpe:2.3:o:opensuse:leap:15.1
  • Opensuse » Leap » Version: 42.3
    cpe:2.3:o:opensuse:leap:42.3
  • Redhat » Enterprise Linux Desktop » Version: 6.0
    cpe:2.3:o:redhat:enterprise_linux_desktop:6.0
  • Redhat » Enterprise Linux Desktop » Version: 7.0
    cpe:2.3:o:redhat:enterprise_linux_desktop:7.0
  • Redhat » Enterprise Linux Server » Version: 6.0
    cpe:2.3:o:redhat:enterprise_linux_server:6.0
  • Redhat » Enterprise Linux Server » Version: 7.0
    cpe:2.3:o:redhat:enterprise_linux_server:7.0
  • Redhat » Enterprise Linux Server Aus » Version: 7.6
    cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6
  • Redhat » Enterprise Linux Server Eus » Version: 7.5
    cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5
  • Redhat » Enterprise Linux Server Eus » Version: 7.6
    cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6
  • cpe:2.3:o:redhat:enterprise_linux_workstation:6.0
  • cpe:2.3:o:redhat:enterprise_linux_workstation:7.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved