CVE-1999-0184Bind vulnerability

3 documents3 sources
Severity
6.4MEDIUMNVD
EPSS
1.2%
top 20.99%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
ISC Bind
Timeline
PublishedJul 1
Latest updateApr 30

Description

When compiled with the -DALLOW_UPDATES option, bind allows dynamic updates to the DNS server, allowing for malicious modification of DNS records.

CVSS vector

AV:N/AC:L/C:N/I:P/A:PExploitability: 10.0 | Impact: 4.9

Affected Packages1 packages

NVDisc/bind9.4.0

🔴Vulnerability Details

2
GHSA
GHSA-q2p4-rmjf-jmf3: When compiled with the -DALLOW_UPDATES option, bind allows dynamic updates to the DNS server, allowing for malicious modification of DNS records2022-04-30
CVEList
CVE-1999-0184: When compiled with the -DALLOW_UPDATES option, bind allows dynamic updates to the DNS server, allowing for malicious modification of DNS records1999-09-29
CVE-1999-0184 — ISC Bind vulnerability | cvebase