cvelist/2018/5xxx/CVE-2018-5736.json

{
   "CVE_data_meta": {
      "ASSIGNER": "security-officer@isc.org",
      "DATE_PUBLIC": "2018-05-18T00:00:00.000Z",
      "ID": "CVE-2018-5736",
      "STATE": "PUBLIC",
      "TITLE": "Multiple transfers of a zone in quick succession can cause an assertion failure in rbtdb.c"
   },
   "affects": {
      "vendor": {
         "vendor_data": [
            {
               "product": {
                  "product_data": [
                     {
                        "product_name": "BIND 9",
                        "version": {
                           "version_data": [
                              {
                                 "version_value": "9.12.0 and 9.12.1"
                              }
                           ]
                        }
                     }
                  ]
               },
               "vendor_name": "ISC"
            }
         ]
      }
   },
   "credit": [
      {
         "lang": "eng",
         "value": "ISC would like to thank SWITCH for informing us of this vulnerability."
      }
   ],
   "data_format": "MITRE",
   "data_type": "CVE",
   "data_version": "4.0",
   "description": {
      "description_data": [
         {
            "lang": "eng",
            "value": "An error in zone database reference counting can lead to an assertion failure if a server which is running an affected version of BIND attempts several transfers of a slave zone in quick succession. This defect could be deliberately exercised by an attacker who is permitted to cause a vulnerable server to initiate zone transfers (for example: by sending valid NOTIFY messages), causing the named process to exit after failing the assertion test.  Affects BIND 9.12.0 and 9.12.1."
         }
      ]
   },
   "impact": {
      "cvss": {
         "attackComplexity": "HIGH",
         "attackVector": "NETWORK",
         "availabilityImpact": "HIGH",
         "baseScore": 5.3,
         "baseSeverity": "MEDIUM",
         "confidentialityImpact": "NONE",
         "integrityImpact": "NONE",
         "privilegesRequired": "LOW",
         "scope": "UNCHANGED",
         "userInteraction": "NONE",
         "vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
         "version": "3.0"
      }
   },
   "problemtype": {
      "problemtype_data": [
         {
            "description": [
               {
                  "lang": "eng",
                  "value": "Authoritative servers that serve slave zones are vulnerable to potential denial of service if all of the following are true:\n\n    they are running an affected version of BIND (BIND 9.12.0 or 9.12.1)\n    at least one of the zones for which they are providing service is of type \"slave\"\n    they permit NOTIFY messages from any source."
               }
            ]
         }
      ]
   },
   "references": {
      "reference_data": [
         {
            "name": "https://kb.isc.org/docs/aa-01602",
            "refsource": "CONFIRM",
            "url": "https://kb.isc.org/docs/aa-01602"
         }
      ]
   },
   "solution": [
      {
         "lang": "eng",
         "value": "The reference counting error which can be exploited in this vulnerability is present in only two public release versions of BIND, 9.12.0 and 9.12.1.\n\nIf you are running an affected version then upgrade to BIND 9.12.1-P1"
      }
   ],
   "source": {
      "discovery": "UNKNOWN"
   },
   "work_around": [
      {
         "lang": "eng",
         "value": "For servers which must receive notifies to keep slave zone contents current, no complete workarounds are known although restricting BIND to only accept NOTIFY messages from authorized sources can greatly mitigate the risk of attack."
      }
   ]
}
- Synchronized data. 2018-01-17 10:02:38 -05:00			`{`
Adding several CVEs for ISC. 2019-01-16 14:19:40 -05:00			`"CVE_data_meta": {`
			`"ASSIGNER": "security-officer@isc.org",`
			`"DATE_PUBLIC": "2018-05-18T00:00:00.000Z",`
			`"ID": "CVE-2018-5736",`
			`"STATE": "PUBLIC",`
			`"TITLE": "Multiple transfers of a zone in quick succession can cause an assertion failure in rbtdb.c"`
- Synchronized data. 2018-01-17 10:02:38 -05:00			`},`
Adding several CVEs for ISC. 2019-01-16 14:19:40 -05:00			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "BIND 9",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "9.12.0 and 9.12.1"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "ISC"`
			`}`
			`]`
			`}`
			`},`
			`"credit": [`
			`{`
			`"lang": "eng",`
			`"value": "ISC would like to thank SWITCH for informing us of this vulnerability."`
			`}`
			`],`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
			`{`
			`"lang": "eng",`
			`"value": "An error in zone database reference counting can lead to an assertion failure if a server which is running an affected version of BIND attempts several transfers of a slave zone in quick succession. This defect could be deliberately exercised by an attacker who is permitted to cause a vulnerable server to initiate zone transfers (for example: by sending valid NOTIFY messages), causing the named process to exit after failing the assertion test. Affects BIND 9.12.0 and 9.12.1."`
			`}`
			`]`
			`},`
			`"impact": {`
			`"cvss": {`
			`"attackComplexity": "HIGH",`
			`"attackVector": "NETWORK",`
			`"availabilityImpact": "HIGH",`
			`"baseScore": 5.3,`
			`"baseSeverity": "MEDIUM",`
			`"confidentialityImpact": "NONE",`
			`"integrityImpact": "NONE",`
			`"privilegesRequired": "LOW",`
			`"scope": "UNCHANGED",`
			`"userInteraction": "NONE",`
			`"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",`
			`"version": "3.0"`
			`}`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
- Synchronized data. 2018-01-17 10:02:38 -05:00			`{`
Adding several CVEs for ISC. 2019-01-16 14:19:40 -05:00			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Authoritative servers that serve slave zones are vulnerable to potential denial of service if all of the following are true:\n\n they are running an affected version of BIND (BIND 9.12.0 or 9.12.1)\n at least one of the zones for which they are providing service is of type \"slave\"\n they permit NOTIFY messages from any source."`
			`}`
			`]`
- Synchronized data. 2018-01-17 10:02:38 -05:00			`}`
			`]`
Adding several CVEs for ISC. 2019-01-16 14:19:40 -05:00			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "https://kb.isc.org/docs/aa-01602",`
			`"refsource": "CONFIRM",`
			`"url": "https://kb.isc.org/docs/aa-01602"`
			`}`
			`]`
			`},`
			`"solution": [`
			`{`
			`"lang": "eng",`
			`"value": "The reference counting error which can be exploited in this vulnerability is present in only two public release versions of BIND, 9.12.0 and 9.12.1.\n\nIf you are running an affected version then upgrade to BIND 9.12.1-P1"`
			`}`
			`],`
			`"source": {`
			`"discovery": "UNKNOWN"`
			`},`
			`"work_around": [`
			`{`
			`"lang": "eng",`
			`"value": "For servers which must receive notifies to keep slave zone contents current, no complete workarounds are known although restricting BIND to only accept NOTIFY messages from authorized sources can greatly mitigate the risk of attack."`
			`}`
			`]`
- Synchronized data. 2018-01-17 10:02:38 -05:00			`}`
Adding several CVEs for ISC. 2019-01-16 14:19:40 -05:00