Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Excessive NSEC3 iterations cause high CPU load during insecure delegation validation
Vulnerability Description
If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the resolver may consume excessive CPU. Authoritative-only servers are generally unaffected, although there are circumstances where authoritative servers may make recursive queries (see: https://kb.isc.org/docs/why-does-my-authoritative-server-make-recursive-queries). This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.46, 9.20.0 through 9.20.20, 9.21.0 through 9.21.19, 9.11.3-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.46-S1, and 9.20.9-S1 through 9.20.20-S1.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
循环条件输入未经检查
Vulnerability Title
ISC BIND 9 安全漏洞
Vulnerability Description
ISC BIND 9是ISC组织的一个域名系统软件。 ISC BIND 9 9.16.50及之前版本、9.18.46及之前版本、9.20.20及之前版本、9.21.19及之前版本、9.16.50-S1及之前版本、9.18.46-S1及之前版本和9.20.20-S1及之前版本存在安全漏洞,该漏洞源于处理恶意区域时消耗过多CPU,可能导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A