VYPR
← All advisories
Unrated severityNVD Advisory· Published Nov 10, 1999· Updated Apr 16, 2026

CVE-1999-0848

CVE-1999-0848

Description

BIND versions prior to 8.2.2 are vulnerable to denial of service by consuming excessive file descriptors, potentially leading to a crash.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

BIND versions prior to 8.2.2 are vulnerable to denial of service by consuming excessive file descriptors, potentially leading to a crash.

Vulnerability

BIND versions prior to 8.2.2 contain a bug that allows attackers to cause the named service to consume more file descriptors than can be managed, leading to a crash. This vulnerability is related to improper validation of zone information loaded from disk files under certain permission conditions [1].

Exploitation

An attacker can exploit this vulnerability by sending specially crafted requests to the BIND server, causing it to exhaust its available file descriptors. This can be triggered locally if specific permission conditions are met when validating zone information loaded from disk files [1].

Impact

Successful exploitation of this vulnerability results in a denial of service, causing the BIND named service to crash. This prevents the server from resolving DNS queries, disrupting network services that rely on it.

Mitigation

There is no specific mitigation or patched version information available in the provided references for this particular denial of service vulnerability. Users are advised to consult official BIND advisories for potential workarounds or updated versions.

References
  1. ISC BIND 8.2.2 / IRIX 6.5.17 / Solaris 7.0 - NXT Overflow / Denial of Service

AI Insight generated on Jun 4, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

4
  • Isc/Bind2 versions
    cpe:2.3:a:isc:bind:8.2:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:isc:bind:8.2:*:*:*:*:*:*:*
    • cpe:2.3:a:isc:bind:8.2.1:*:*:*:*:*:*:*
  • Sun Corporation/Solaris
    cpe:2.3:o:sun:solaris:7.0:*:x86:*:*:*:*:*
  • Sun Corporation/Sunos
    cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

Root cause

"The BIND named service does not properly validate certain DNS records, allowing an attacker to cause it to consume an excessive number of file descriptors."

Attack vector

An attacker can send specially crafted DNS queries to a vulnerable BIND server. These queries are designed to exploit flaws in how BIND handles specific record types, such as NXT or SIG records. This can lead to the server attempting to open and manage more file descriptors than its configured limit ('fdmax'), ultimately causing the named process to crash and become unavailable [ref_id=1].

Affected code

The vulnerability affects BIND packages prior to version 8.2.2. The specific functions or code paths responsible for handling NXT and SIG records, and the subsequent file descriptor management, are not explicitly detailed in the provided text.

What the fix does

The advisory does not specify a patch or provide details on the fix. Remediation guidance suggests updating BIND to a version that addresses these vulnerabilities. The exact code changes to prevent the excessive file descriptor consumption are not detailed in the provided information.

Preconditions

  • configThe target system must be running a vulnerable version of BIND (prior to 8.2.2).
  • networkThe attacker must be able to send DNS queries to the BIND server.

Generated on Jun 4, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

3

News mentions

0

No linked articles in our index yet.