CVE-1999-0184

CVSS 2.0 Score 6.4 of 10 (medium)

Details

Published Jul 1, 1997

Updated: Nov 20, 2024

Summary

CVE-1999-0184 is a vulnerability affecting the bind DNS server. When the server is compiled with the -DALLOW_UPDATES option, it becomes susceptible to unauthorized dynamic updates. Malicious actors can exploit this weakness to manipulate DNS records, potentially leading to serious disruptions or redirecting users to fraudulent websites. This vulnerability poses a significant risk to network security and integrity. Organizations using the bind DNS server are advised to disable this option or apply relevant patches to mitigate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

ISC BIND

Affected Vendors

Internet Storm Center

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlRgM
https://www.cve.org/CVERecord?id=CVE-1999-0184
https://nvd.nist.gov/vuln/detail/CVE-1999-0184

Back to Vulnerability Database