DELETED PROTOCOL-DNS ISC BIND DNSSEC response unsupported cryptographic algorithm attempt
buffer.c in named in ISC BIND 9.x before 9.9.7-P3 and 9.10.x before 9.10.2-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) by creating a zone containing a malformed DNSSEC key and issuing a query for a name in that zone.
CVSS base score 7.8
CVSS impact score 6.9
CVSS exploitability score 10.0
- isc bind 9.9.7
- isc bind 9.10.2
- apple macosx_server 5.0.15
Ease of attack
Upgrade to the latest non-affected version of the software.
Apply the appropriate vendor supplied patches.
- Talos research team.
- This document was generated from data supplied by the national vulnerability database, a product of the national institute of standards and technology.
- For more information see nvd.