High severity7.5NVD Advisory· Published Sep 6, 2006· Updated Apr 16, 2026

CVE-2006-4095

Description

BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via certain SIG queries, which cause an assertion failure when multiple RRsets are returned.

Affected products

Isc/Bind
cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*
Range: <=9.2.6
Apple Inc./Mac Os X
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
Range: <10.3.9
Apple Inc./Mac Os X Server
cpe:2.3:o:apple:mac_os_x_server:*:*:*:*:*:*:*:*
Range: <10.3.9
Canonical (company)/Ubuntu Linux3 versions
cpe:2.3:o:canonical:ubuntu_linux:5.04:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:canonical:ubuntu_linux:5.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:5.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.kb.cert.org/vuls/id/915404nvdPatchThird Party AdvisoryUS Government Resource
www.niscc.gov.uk/niscc/docs/re-20060905-00590.pdfnvdBroken LinkPatch
security.freebsd.org/advisories/FreeBSD-SA-06:20.bind.ascnvdThird Party Advisory
security.gentoo.org/glsa/glsa-200609-11.xmlnvdThird Party Advisory
securitytracker.com/idnvdBroken LinkThird Party AdvisoryVDB Entry
www.securityfocus.com/archive/1/445600/100/0/threadednvdBroken LinkThird Party AdvisoryVDB Entry
www.securityfocus.com/bid/19859nvdBroken LinkThird Party AdvisoryVDB Entry
www.ubuntu.com/usn/usn-343-1nvdThird Party Advisory
exchange.xforce.ibmcloud.com/vulnerabilities/28745nvdThird Party AdvisoryVDB Entry
docs.info.apple.com/article.htmlnvdBroken Link
lists.apple.com/archives/security-announce/2007/May/msg00004.htmlnvdMailing List
secunia.com/advisories/21752nvdBroken Link
secunia.com/advisories/21786nvdBroken Link
secunia.com/advisories/21816nvdBroken Link
secunia.com/advisories/21818nvdBroken Link
secunia.com/advisories/21828nvdBroken Link
secunia.com/advisories/21835nvdBroken Link
secunia.com/advisories/21838nvdBroken Link
secunia.com/advisories/21912nvdBroken Link
secunia.com/advisories/21926nvdBroken Link
secunia.com/advisories/22298nvdBroken Link
secunia.com/advisories/24950nvdBroken Link
secunia.com/advisories/25402nvdBroken Link
slackware.com/security/viewer.phpnvdBroken Link
www.mandriva.com/security/advisoriesnvdBroken Link
www.novell.com/linux/security/advisories/2006_23_sr.htmlnvdBroken Link
www.novell.com/linux/security/advisories/2006_24_sr.htmlnvdBroken Link
www.openbsd.org/errata.htmlnvdRelease Notes
www.openpkg.com/security/advisories/OpenPKG-SA-2006.019.htmlnvdBroken Link
www.us.debian.org/security/2006/dsa-1172nvdBroken Link
www.vupen.com/english/advisories/2006/3473nvdBroken Link
www.vupen.com/english/advisories/2007/1401nvdBroken Link
www.vupen.com/english/advisories/2007/1939nvdBroken Link
issues.rpath.com/browse/RPL-626nvdBroken Link
www2.itrc.hp.com/service/cki/docDisplay.donvdBroken Link

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.004
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000