What is CVE-2012-1667?

CVE-2012-1667 is a vulnerability in Isc Bind, classified under CWE-189. Published 2012-06-05.

Is CVE-2012-1667 known to be exploited?

14 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Isc Bind

CVE-2012-1667

ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1, 9.9.x before 9.9.1-P1, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P1 does not properly handle resource records with a zero-length RDATA section, which allows remote DNS servers to cause a…

EPSS: 0.532 (98.0th percentile) — read the EPSS interpretation.

Affected products

Isc Bind — versions 9.0, 9.0.0, 9.0.1
N/a — versions n/a

Weakness classification (CWE)

CWE-189

Public proof-of-concept exploits

References

MDVSA-2012:089 (vendor-advisory, x_refsource_MANDRIVA)
53772 (vdb-entry, x_refsource_BID)
SSA:2012-341-01 (vendor-advisory, x_refsource_SLACKWARE)
51096 (x_refsource_SECUNIA, third-party-advisory)
VU#381699 (x_refsource_CERT-VN, third-party-advisory)
cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
SUSE-SU-2012:0741 (vendor-advisory, x_refsource_SUSE)
HPSBUX02795 (x_refsource_HP, vendor-advisory)
RHSA-2012:1110 (x_refsource_REDHAT, vendor-advisory)
APPLE-SA-2012-09-19-2 (vendor-advisory, x_refsource_APPLE)

Frequently asked questions

What is CVE-2012-1667?: CVE-2012-1667 is a vulnerability in Isc Bind, classified under CWE-189. Published 2012-06-05.
Is CVE-2012-1667 known to be exploited?: 14 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.