CVE-2009-0696
CVSS 4.3 - MEDIUM
Description
The dns_db_findrdataset function in db.c in named in ISC BIND 9.4 before 9.4.3-P3, 9.5 before 9.5.1-P3, and 9.6 before 9.6.1-P1, when configured as a master server, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an ANY record in the prerequisite section of a crafted dynamic update message.
Affected Products
50 of 65| Vendor | Product | Version |
|---|---|---|
| isc | bind |
9.4
|
| isc | bind |
9.4.0
|
| isc | bind |
9.4.0
|
| isc | bind |
9.4.0
|
| isc | bind |
9.4.0
|
| isc | bind |
9.4.0
|
| isc | bind |
9.4.0
|
| isc | bind |
9.4.0
|
| isc | bind |
9.4.0
|
| isc | bind |
9.4.0
|
| isc | bind |
9.4.0
|
| isc | bind |
9.4.0
|
| isc | bind |
9.4.0
|
| isc | bind |
9.4.0
|
| isc | bind |
9.4.1
|
| isc | bind |
9.4.2
|
| isc | bind |
9.4.2
|
| isc | bind |
9.4.2
|
| isc | bind |
9.4.3
|
| isc | bind |
9.4.3
|
| isc | bind |
9.4.3
|
| isc | bind |
9.4.3
|
| isc | bind |
9.4.3
|
| isc | bind |
9.5
|
| isc | bind |
9.5.0
|
| isc | bind |
9.5.0
|
| isc | bind |
9.5.0
|
| isc | bind |
9.5.0
|
| isc | bind |
9.5.0
|
| isc | bind |
9.5.0
|
| isc | bind |
9.5.0
|
| isc | bind |
9.5.0
|
| isc | bind |
9.5.0
|
| isc | bind |
9.5.0
|
| isc | bind |
9.5.0
|
| isc | bind |
9.5.0
|
| isc | bind |
9.5.0
|
| isc | bind |
9.5.0
|
| isc | bind |
9.5.0
|
| isc | bind |
9.6
|
| isc | bind |
9.6
|
| isc | bind |
9.6
|
| isc | bind |
9.6
|
| isc | bind |
9.6
|
| isc | bind |
9.6
|
| isc | bind |
9.6
|
| isc | bind |
9.6
|
| isc | bind |
9.6
|
| isc | bind |
9.6
|
| isc | bind |
9.6
|
Showing first 50 of 65 affected products.
References
Weakness Types
CWE-16
CVE Information
- CVE ID:
CVE-2009-0696- Published:
- 2009-07-29
- Modified:
- 2026-04-23
- CVSS Score:
- 4.3
- Severity:
- MEDIUM
- Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P
Affected Vendors
isc
Quick Actions
CVSS Severity Scale
0.0 - 3.9
LOW
4.0 - 6.9
MEDIUM
7.0 - 8.9
HIGH
9.0 - 10.0
CRITICAL