CVE-2012-3868

medium

Description

Race condition in the ns_client structure management in ISC BIND 9.9.x before 9.9.1-P2 allows remote attackers to cause a denial of service (memory consumption or process exit) via a large volume of TCP queries.

References

https://kb.isc.org/article/AA-00730

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2012&m=slackware-security.536004

Details

Source: Mitre, NVD

Published: 2012-07-25

Risk Information

CVSS v2

Base Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 5.9

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: Medium