CVE-1999-0835

CVSS 2.0 Score 10 of 10 (high)

Details

Published Nov 10, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0835 is a denial-of-service vulnerability affecting BIND named (Name Server Daemon). The issue arises from the server's mishandling of malformed SIG (Signature) records. An attacker can exploit this vulnerability by sending specially crafted SIG records to the BIND named server, causing it to crash or become unresponsive, resulting in a denial-of-service condition. This vulnerability can lead to significant downtime for DNS services if left unpatched.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM AIX
SunOS

Affected Vendors

IBM Corporation
Oracle Corp

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/LEzJDH
https://www.cve.org/CVERecord?id=CVE-1999-0835
https://nvd.nist.gov/vuln/detail/CVE-1999-0835

Back to Vulnerability Database