CVE-2016-2848

7.5 HIGH

Published: October 21, 2016 Modified: May 06, 2026

Description

ISC BIND 9.1.0 through 9.8.4-P2 and 9.9.0 through 9.9.2-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via malformed options data in an OPT resource record.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2016-2093.html

Source: cve@mitre.org

http://rhn.redhat.com/errata/RHSA-2016-2094.html

Source: cve@mitre.org

http://rhn.redhat.com/errata/RHSA-2016-2099.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/93809

Source: cve@mitre.org

http://www.securityfocus.com/bid/93814

Source: cve@mitre.org

http://www.securitytracker.com/id/1037073

Source: cve@mitre.org

https://bugzilla.redhat.com/show_bug.cgi?id=1385450

Source: cve@mitre.org

Issue Tracking

https://kb.isc.org/article/AA-01433/74/CVE-2016-2848

Source: cve@mitre.org

Mitigation Vendor Advisory

https://security.netapp.com/advisory/ntap-20180926-0002/

Source: cve@mitre.org

https://security.netapp.com/advisory/ntap-20180926-0005/

Source: cve@mitre.org

https://source.isc.org/cgi-bin/gitweb.cgi?p=bind9.git%3Ba=commit%3Bh=4adf97c32fcca7d00e5756607fd045f2aab9c3d4

Source: cve@mitre.org

http://rhn.redhat.com/errata/RHSA-2016-2093.html