mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
1023 B
1023 B
CVE-2016-2776
Description
buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before 9.10.4-P3, and 9.11.x before 9.11.0rc3 does not properly construct responses, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query.
POC
Reference
- http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html
- https://www.exploit-db.com/exploits/40453/