What is CVE-2006-0987?

CVE-2006-0987 is a vulnerability in N/a. Published 2006-03-03.

Is CVE-2006-0987 known to be exploited?

7 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2006-0987

The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses, which allows remote attackers to cause a de…

EPSS: 0.573 (98.9th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

pcastagnaro/dns_amplification_scanner
rapid7/metasploit-framework
CVEDB/awesome-cve-repo
0xjessie21/Pelindo-Storm
stran0s/stran0s
pcastagnaro/dns_
C4ssif3r/nmap-scripts

References

kb.isc.org/article/AA-00269 (x_refsource_CONFIRM)
dns.measurement-factory.com/surveys/sum1.html (x_refsource_MISC)
20060228 recursive DNS servers DDoS as a growing DDoS problem (mailing-list, x_refsource_BUGTRAQ)
www.us-cert.gov/reading_room/DNS-recursion121605.pdf (x_refsource_MISC)

Frequently asked questions

What is CVE-2006-0987?: CVE-2006-0987 is a vulnerability in N/a. Published 2006-03-03.
Is CVE-2006-0987 known to be exploited?: 7 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.