CVE-2011-2464

bind: Specially constructed packet will cause named to exit

Severity Score

7.5

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Unspecified vulnerability in ISC BIND 9 9.6.x before 9.6-ESV-R4-P3, 9.7.x before 9.7.3-P3, and 9.8.x before 9.8.0-P4 allows remote attackers to cause a denial of service (named daemon crash) via a crafted UPDATE request.

Vulnerabilidad no especificada en ISC BIND 9 v9.6.x antesw de v9.6-ESV-R4-P3, v9.7.x antes de v9.7.3-P3, y v9.8.x antes de v9.8.0-P4, permite a usuarios remotos provocar una denegación de servicio a través de una petición UPDATE manipulada.

A defect in the affected BIND 9 versions allows an attacker to remotely cause the "named" process to exit using a specially crafted packet. This defect affects both recursive and authoritative servers. The code location of the defect makes it impossible to protect BIND using ACLs configured within named.conf or by disabling any features at compile-time or run-time. A remote attacker would need to be able to send a specially crafted packet directly to a server running a vulnerable version of BIND. There is also the potential for an indirect attack via malware that is inadvertently installed and run, where infected machines have direct access to an organization's nameservers. Versions affected are 9.6.3, 9.6-ESV-R4, 9.6-ESV-R4-P1, 9.6-ESV-R5b1 9.7.0, 9.7.0-P1, 9.7.0-P2, 9.7.1, 9.7.1-P1, 9.7.1-P2, 9.7.2, 9.7.2-P1, 9.7.2-P2, 9.7.2-P3, 9.7.3, 9.7.3-P1, 9.7.3-P2, 9.7.4b1 9.8.0, 9.8.0-P1, 9.8.0-P2, 9.8.0-P3, and 9.8.1b1.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2011-06-06 CVE Reserved
2011-07-05 CVE Published
2024-08-06 CVE Updated
2025-05-17 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (32)

URL	Tag	Source
http://blogs.oracle.com/sunsecurity/entry/cve_2011_2464_remote_denial	X_refsource_confirm
http://osvdb.org/73605	Vdb Entry
http://secunia.com/advisories/45089	Third Party Advisory
http://secunia.com/advisories/45143	Third Party Advisory
http://secunia.com/advisories/45177	Third Party Advisory
http://secunia.com/advisories/45223	Third Party Advisory
http://secunia.com/advisories/45410	Third Party Advisory
http://secunia.com/advisories/45412	Third Party Advisory
http://support.apple.com/kb/HT5002	X_refsource_confirm
http://www.isc.org/software/bind/advisories/cve-2011-2464	X_refsource_confirm
http://www.kb.cert.org/vuls/id/142646	Third Party Advisory
http://www.securityfocus.com/archive/1/518749/100/0/threaded	Mailing List
http://www.securityfocus.com/bid/48566	Vdb Entry
http://www.securitytracker.com/id?1025742	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/68375	Vdb Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13997	Signature

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html	2018-10-30
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062522.html	2018-10-30
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062846.html	2018-10-30
http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00002.html	2018-10-30
http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00004.html	2018-10-30
http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00006.html	2018-10-30
http://marc.info/?l=bugtraq&m=131983337229394&w=2	2018-10-30
http://secunia.com/advisories/45082	2018-10-30
http://secunia.com/advisories/45185	2018-10-30
http://www.debian.org/security/2011/dsa-2272	2018-10-30
http://www.mandriva.com/security/advisories?name=MDVSA-2011:115	2018-10-30
http://www.redhat.com/support/errata/RHSA-2011-0926.html	2018-10-30
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.377171	2018-10-30
https://www.ubuntu.com/usn/USN-1163-1	2018-10-30
https://access.redhat.com/security/cve/CVE-2011-2464	2011-07-07
https://bugzilla.redhat.com/show_bug.cgi?id=718966	2011-07-07

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.6 Search vendor "Isc" for product "Bind" and version "9.6"		-		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.6.0 Search vendor "Isc" for product "Bind" and version "9.6.0"		-		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.6.0 Search vendor "Isc" for product "Bind" and version "9.6.0"		p1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.6.0 Search vendor "Isc" for product "Bind" and version "9.6.0"		rc1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.6.0 Search vendor "Isc" for product "Bind" and version "9.6.0"		rc2		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.6.1 Search vendor "Isc" for product "Bind" and version "9.6.1"		-		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.6.1 Search vendor "Isc" for product "Bind" and version "9.6.1"		p1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.6.1 Search vendor "Isc" for product "Bind" and version "9.6.1"		p2		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.6.1 Search vendor "Isc" for product "Bind" and version "9.6.1"		p3		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.6.1 Search vendor "Isc" for product "Bind" and version "9.6.1"		rc1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.6.2 Search vendor "Isc" for product "Bind" and version "9.6.2"		-		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.6.2 Search vendor "Isc" for product "Bind" and version "9.6.2"		rc1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.6.3 Search vendor "Isc" for product "Bind" and version "9.6.3"		-		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.6.3 Search vendor "Isc" for product "Bind" and version "9.6.3"		rc1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.0 Search vendor "Isc" for product "Bind" and version "9.7.0"		-		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.0 Search vendor "Isc" for product "Bind" and version "9.7.0"		b1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.0 Search vendor "Isc" for product "Bind" and version "9.7.0"		p1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.0 Search vendor "Isc" for product "Bind" and version "9.7.0"		p2		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.0 Search vendor "Isc" for product "Bind" and version "9.7.0"		rc1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.0 Search vendor "Isc" for product "Bind" and version "9.7.0"		rc2		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.1 Search vendor "Isc" for product "Bind" and version "9.7.1"		-		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.1 Search vendor "Isc" for product "Bind" and version "9.7.1"		p1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.1 Search vendor "Isc" for product "Bind" and version "9.7.1"		p2		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.1 Search vendor "Isc" for product "Bind" and version "9.7.1"		rc1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.2 Search vendor "Isc" for product "Bind" and version "9.7.2"		-		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.2 Search vendor "Isc" for product "Bind" and version "9.7.2"		p1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.2 Search vendor "Isc" for product "Bind" and version "9.7.2"		p2		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.2 Search vendor "Isc" for product "Bind" and version "9.7.2"		p3		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.2 Search vendor "Isc" for product "Bind" and version "9.7.2"		rc1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.2b1 Search vendor "Isc" for product "Bind" and version "9.7.2b1"		-		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.3 Search vendor "Isc" for product "Bind" and version "9.7.3"		-		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.3 Search vendor "Isc" for product "Bind" and version "9.7.3"		b1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.3 Search vendor "Isc" for product "Bind" and version "9.7.3"		p1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.7.3 Search vendor "Isc" for product "Bind" and version "9.7.3"		rc1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.8.0 Search vendor "Isc" for product "Bind" and version "9.8.0"		-		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.8.0 Search vendor "Isc" for product "Bind" and version "9.8.0"		a1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.8.0 Search vendor "Isc" for product "Bind" and version "9.8.0"		b1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.8.0 Search vendor "Isc" for product "Bind" and version "9.8.0"		p1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.8.0 Search vendor "Isc" for product "Bind" and version "9.8.0"		p2		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.8.0 Search vendor "Isc" for product "Bind" and version "9.8.0"		rc1		Affected
Isc Search vendor "Isc"		Bind Search vendor "Isc" for product "Bind"				9.8.1 Search vendor "Isc" for product "Bind" and version "9.8.1"		b1		Affected