CVE-2016-6170

ISC BIND through 9.9.9-P1, 9.10.x through 9.10.4-P1, and 9.11.x through 9.11.0b1 allows primary DNS servers to cause a denial of service (secondary DNS server crash) via a large AXFR response, and possibly allows IXFR servers to cause a denial of service (IXFR client crash) via a large IXFR response and allows remote authenticated users to cause a denial of service (primary DNS server crash) via a large UPDATE message.

Published: Jul 6, 2016
Updated: Apr 13, 2023
CVE: CVE-2016-6170
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:N/I:N/A:P

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
isc / bind	9.11.0-a3	9.11.0-a3.x
isc / bind	9.11.0-a1	9.11.0-a1.x
isc / bind	9.11.0-b1	9.11.0-b1.x
isc / bind	9.11.0-a2	9.11.0-a2.x
isc / bind	9.9.9-p1	9.9.9-p1.x
isc / bind	9.10.4-p1	9.10.4-p1.x
isc / bind	9.9.9	9.9.9.x
isc / bind	9.9.9-beta1	9.9.9-beta1.x
isc / bind	9.9.9-beta2	9.9.9-beta2.x
isc / bind	9.10.4	9.10.4.x
isc / bind	9.0	9.9.8.x
isc / bind	9.10.0	9.10.3.x
redhat / enterprise_linux	7.0	7.0.x
redhat / enterprise_linux	6.0	6.0.x
redhat / enterprise_linux	5.0	5.0.x

Vulnerability Database

289,697

CVE-2016-6170