Vulnerabilities > CVE-2018-5734 - Reachable Assertion vulnerability in multiple products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
While handling a particular type of malformed packet BIND erroneously selects a SERVFAIL rcode instead of a FORMERR rcode. If the receiving view has the SERVFAIL cache feature enabled, this can trigger an assertion failure in badcache.c when the request doesn't contain all of the expected information. Affects BIND 9.10.5-S1 to 9.10.5-S4, 9.10.6-S1, 9.10.6-S2.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 | |
Application | 2 |
Common Weakness Enumeration (CWE)
Nessus
NASL family | DNS |
NASL id | BIND9_CVE-2018-5734.NASL |
description | According to its self-reported version, the instance of ISC BIND 9 running on the remote name server is 9.10.5-S1 to 9.10.5-S4, 9.10.6-S1 or 9.10.6-S2. It is, therefore, affected by an assertion failure vulnerability which exists in badcache.c due to selecting a SERVFAIL rcode instead of a FORMERR rcode. An unauthenticated attacker can exploit this to cause an assertion failure when the request doesn |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 122237 |
published | 2019-02-15 |
reporter | This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof. |
source | https://www.tenable.com/plugins/nessus/122237 |
title | ISC BIND Assertion Failure Vulnerability |
code |
|
References
- http://www.securityfocus.com/bid/103189
- http://www.securityfocus.com/bid/103189
- http://www.securitytracker.com/id/1040438
- http://www.securitytracker.com/id/1040438
- https://kb.isc.org/docs/aa-01562
- https://kb.isc.org/docs/aa-01562
- https://security.netapp.com/advisory/ntap-20180926-0005/
- https://security.netapp.com/advisory/ntap-20180926-0005/