CVE-2016-9131

CVSS v3.1 7.5 (High)

CVSS v2.0 5 (Medium)

EPSS 87.30 % (99^th)

Affected Products 12

Advisories 15

named in ISC BIND 9.x before 9.9.9-P5, 9.10.x before 9.10.4-P5, and 9.11.x before 9.11.0-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a malformed response to an RTYPE ANY query.

Weaknesses

CWE-20: Improper Input Validation

CVE Status: PUBLISHED
CNA: MITRE
Published Date: 2017-01-12 06:59:00
(7 years ago)
Updated Date: 2020-08-19 19:17:55
(4 years ago)

Affected Products

Debian

Debian Linux

Isc

Bind

Netapp

Redhat

Configuration #1

	CPE23	From	Up To
Isc Bind from 9.0 version and 9.9.8 and prior versions	cpe:2.3:a:isc:bind	>= 9.0	<= 9.9.8
Isc Bind from 9.10.0 version and 9.10.3 and prior versions	cpe:2.3:a:isc:bind	>= 9.10.0	<= 9.10.3
Isc Bind 9.9.9	cpe:2.3:a:isc:bind:9.9.9:-
Isc Bind 9.9.9 B1	cpe:2.3:a:isc:bind:9.9.9:b1
Isc Bind 9.9.9 B2	cpe:2.3:a:isc:bind:9.9.9:b2
Isc Bind 9.9.9 P1	cpe:2.3:a:isc:bind:9.9.9:p1
Isc Bind 9.9.9 P3	cpe:2.3:a:isc:bind:9.9.9:p3
Isc Bind 9.9.9 P4	cpe:2.3:a:isc:bind:9.9.9:p4
Isc Bind 9.10.4 B2	cpe:2.3:a:isc:bind:9.10.4:b2
Isc Bind 9.10.4 B3	cpe:2.3:a:isc:bind:9.10.4:b3
Isc Bind 9.10.4 P2	cpe:2.3:a:isc:bind:9.10.4:p2
Isc Bind 9.10.4 P3	cpe:2.3:a:isc:bind:9.10.4:p3
Isc Bind 9.10.4 P4	cpe:2.3:a:isc:bind:9.10.4:p4
Isc Bind 9.10.4 Rc1	cpe:2.3:a:isc:bind:9.10.4:rc1
Isc Bind 9.11.0 A1	cpe:2.3:a:isc:bind:9.11.0:a1
Isc Bind 9.11.0 A2	cpe:2.3:a:isc:bind:9.11.0:a2
Isc Bind 9.11.0 A3	cpe:2.3:a:isc:bind:9.11.0:a3
Isc Bind 9.11.0 B1	cpe:2.3:a:isc:bind:9.11.0:b1
Isc Bind 9.11.0 B2	cpe:2.3:a:isc:bind:9.11.0:b2
Isc Bind 9.11.0 B3	cpe:2.3:a:isc:bind:9.11.0:b3
Isc Bind 9.11.0 P1	cpe:2.3:a:isc:bind:9.11.0:p1
Isc Bind 9.11.0 Rc1	cpe:2.3:a:isc:bind:9.11.0:rc1

Configuration #2

		CPE23	From	Up To
	Debian Linux 8.0	cpe:2.3:o:debian:debian_linux:8.0

Configuration #3

		CPE23	From	Up To
	Redhat Enterprise Linux Desktop 7.0	cpe:2.3:o:redhat:enterprise_linux_desktop:7.0
	Redhat Enterprise Linux Eus 7.2	cpe:2.3:o:redhat:enterprise_linux_eus:7.2
	Redhat Enterprise Linux Eus 7.3	cpe:2.3:o:redhat:enterprise_linux_eus:7.3
	Redhat Enterprise Linux Eus 7.4	cpe:2.3:o:redhat:enterprise_linux_eus:7.4
	Redhat Enterprise Linux Eus 7.5	cpe:2.3:o:redhat:enterprise_linux_eus:7.5
	Redhat Enterprise Linux Eus 7.6	cpe:2.3:o:redhat:enterprise_linux_eus:7.6
	Redhat Enterprise Linux Eus 7.7	cpe:2.3:o:redhat:enterprise_linux_eus:7.7
	Redhat Enterprise Linux Server 7.0	cpe:2.3:o:redhat:enterprise_linux_server:7.0
	Redhat Enterprise Linux Server Aus 7.2	cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2
	Redhat Enterprise Linux Server Aus 7.3	cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3
	Redhat Enterprise Linux Server Aus 7.4	cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4
	Redhat Enterprise Linux Server Aus 7.6	cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6
	Redhat Enterprise Linux Server Aus 7.7	cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7
	Redhat Enterprise Linux Server Tus 7.2	cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2
	Redhat Enterprise Linux Server Tus 7.3	cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3
	Redhat Enterprise Linux Server Tus 7.6	cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6
	Redhat Enterprise Linux Server Tus 7.7	cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7
	Redhat Enterprise Linux Server Workstation 7.0	cpe:2.3:o:redhat:enterprise_linux_server_workstation:7.0

Configuration #4

		CPE23	From	Up To
	Netapp Data Ontap Edge	cpe:2.3:a:netapp:data_ontap_edge:-
	Netapp Hci Management Node	cpe:2.3:a:netapp:hci_management_node:-
	Netapp Solidfire	cpe:2.3:a:netapp:solidfire:-
	Netapp Steelstore Cloud Integrated Storage	cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-