CVE-2014-8500
CVE-2014-8500
ISC BIND 9.0.x through 9.8.x, 9.9.0 through 9.9.6, and 9.10.0 through 9.10.1 does not limit delegation chaining, which allows remote attackers to cause a denial of service (memory consumption and named crash) via a large or infinite number of referrals.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://advisories.mageia.org/MGASA-2014-0524.htmlhttp://cert.ssi.gouv.fr/site/CERTFR-2014-AVI-512/index.htmlhttp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2015-002.txt.aschttp://kb.juniper.net/InfoCenter/index?page=content&id=JSA10676http://lists.apple.com/archives/security-announce/2015/Sep/msg00004.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-01/msg00001.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-01/msg00017.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-03/msg00009.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-03/msg00013.htmlhttp://lists.opensuse.org/opensuse-updates/2015-07/msg00038.htmlhttp://marc.info/?l=bugtraq&m=142180687100892&w=2http://marc.info/?l=bugtraq&m=144000632319155&w=2