BIND 9 Servers Using DNS64 Can Be Crashed By A Deliberately Crafted Query

Summary: 
A specific query can cause BIND nameservers using DNS64 to exit with a REQUIRE assertion failure. BIND nameservers that are not using DNS64 are not at risk.
CVE: 
CVE-2012-5688
Document Version: 
2.0
Posting date: 
04 Dec 2012
Program Impacted: 
BIND
Versions affected: 
9.8.0->9.8.4, 9.9.0->9.9.2
Severity: 
Critical
Exploitable: 
remotely
Description: 

The full advisory can be found at: https://kb.isc.org/article/AA-00828

Active exploits: 
None known at this time.
Share this