CVE-2013-4854
Last modified
CVE-2013-4854 is a vulnerability of currently unknown severity. The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query with a malformed RDATA section that is not properly handled during construction of a log message, as exploited in the wild in July 2013.. EPSS estimates a 34.15% chance of exploitation in the next 30 days.
Description
The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query with a malformed RDATA section that is not properly handled during construction of a log message, as exploited in the wild in July 2013.
Metrics
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Isc | Bind | 9.7.0 | — |
| Isc | Bind | 9.7.1 | — |
| Isc | Bind | 9.7.2 | — |
| Isc | Bind | 9.7.3 | — |
| Isc | Bind | 9.7.4 | — |
| Isc | Bind | 9.7.5 | — |
| Isc | Bind | 9.7.6 | — |
| Isc | Bind | 9.7.7 | — |
| Suse | Suse Linux Enterprise Software Development Kit | 11.0 | Sp2 |
| Novell | Suse Linux | 11 | — |
| Isc | Dnsco Bind | 9.9.3 | S1 |
| Isc | Dnsco Bind | 9.9.4 | S1b1 |
| Opensuse | Opensuse | 11.4 | — |
| Isc | Bind | 9.9.0 | — |
| Isc | Bind | 9.9.1 | — |
| Isc | Bind | 9.9.2 | — |
| Isc | Bind | 9.9.3 | — |
| Freebsd | Freebsd | 8.0 | — |
| Freebsd | Freebsd | 8.1 | — |
| Freebsd | Freebsd | 8.2 | — |
| Freebsd | Freebsd | 8.3 | — |
| Freebsd | Freebsd | 8.4 | — |
| Freebsd | Freebsd | 9.0 | — |
| Freebsd | Freebsd | 9.1 | — |
| Freebsd | Freebsd | 9.2 | Prerelease |
| Mandriva | Business Server | 1.0 | — |
| Mandriva | Enterprise Server | 5.0 | — |
| Redhat | Enterprise Linux | 5 | — |
| Redhat | Enterprise Linux | 6.0 | — |
| Isc | Bind | 9.8.0 | — |
| Isc | Bind | 9.8.1 | — |
| Isc | Bind | 9.8.2 | B1 |
| Isc | Bind | 9.8.3 | — |
| Isc | Bind | 9.8.4 | — |
| Isc | Bind | 9.8.5 | — |
| Isc | Bind | 9.8.6 | B1 |
| Fedoraproject | Fedora | 18 | — |
| Fedoraproject | Fedora | 19 | — |
| Hp | Hp-Ux | b.11.31 | — |
| Slackware | Slackware Linux | 12.1 | — |
| Slackware | Slackware Linux | 12.2 | — |
| Slackware | Slackware Linux | 13.0 | — |
| Slackware | Slackware Linux | 13.1 | — |
| Slackware | Slackware Linux | 13.37 | — |
References
- http://rhn.redhat.com/errata/RHSA-2013-1114.htmlVendor Advisory
- http://rhn.redhat.com/errata/RHSA-2013-1115.htmlVendor Advisory
- http://secunia.com/advisories/54134Vendor Advisory
- http://secunia.com/advisories/54185Vendor Advisory
- http://secunia.com/advisories/54207Vendor Advisory
- http://secunia.com/advisories/54211Vendor Advisory
- http://secunia.com/advisories/54323Vendor Advisory
- http://secunia.com/advisories/54432Vendor Advisory
- https://kb.isc.org/article/AA-01015Vendor Advisory
- https://kb.isc.org/article/AA-01016Vendor Advisory
- http://rhn.redhat.com/errata/RHSA-2013-1114.htmlVendor Advisory
- http://rhn.redhat.com/errata/RHSA-2013-1115.htmlVendor Advisory
- http://secunia.com/advisories/54134Vendor Advisory
- http://secunia.com/advisories/54185Vendor Advisory
- http://secunia.com/advisories/54207Vendor Advisory
- http://secunia.com/advisories/54211Vendor Advisory
- http://secunia.com/advisories/54323Vendor Advisory
- http://secunia.com/advisories/54432Vendor Advisory
- https://kb.isc.org/article/AA-01015Vendor Advisory
- https://kb.isc.org/article/AA-01016Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2013-4854?
How severe is CVE-2013-4854?
How do I fix CVE-2013-4854?
Are you affected by CVE-2013-4854?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST