Unrated severityNVD Advisory· Published Dec 6, 2010· Updated Apr 29, 2026
CVE-2010-3613
CVE-2010-3613
Description
named in ISC BIND 9.6.2 before 9.6.2-P3, 9.6-ESV before 9.6-ESV-R3, and 9.7.x before 9.7.2-P3 does not properly handle the combination of signed negative responses and corresponding RRSIG records in the cache, which allows remote attackers to cause a denial of service (daemon crash) via a query for cached data.
Affected products
27cpe:2.3:a:isc:bind:9.6.2:*:*:*:*:*:*:*+ 25 more
- cpe:2.3:a:isc:bind:9.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.6.2:b1:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.6.2:p1:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.6.2:p2:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.6:*:*:*:esv:*:*:*
- cpe:2.3:a:isc:bind:9.6:r1:*:*:esv:*:*:*
- cpe:2.3:a:isc:bind:9.6:r2:*:*:esv:*:*:*
- cpe:2.3:a:isc:bind:9.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.0:a1:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.0:a2:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.0:a3:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.0:b1:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.0:b2:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.0:b3:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.0:p1:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.0:p2:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.1:b1:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.1:p1:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.1:p2:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.1:rc1:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.2:p1:*:*:*:*:*:*
- cpe:2.3:a:isc:bind:9.7.2:p2:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
37- secunia.com/advisories/42374nvdVendor Advisory
- secunia.com/advisories/42459nvdVendor Advisory
- secunia.com/advisories/42522nvdVendor Advisory
- www.isc.org/software/bind/advisories/cve-2010-3613nvdVendor Advisory
- www.vupen.com/english/advisories/2010/3102nvdVendor Advisory
- www.vupen.com/english/advisories/2010/3103nvdVendor Advisory
- www.vupen.com/english/advisories/2010/3138nvdVendor Advisory
- www.vupen.com/english/advisories/2010/3139nvdVendor Advisory
- www.vupen.com/english/advisories/2010/3140nvdVendor Advisory
- www.kb.cert.org/vuls/id/706148nvdUS Government Resource
- ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2011-001.txt.ascnvd
- lists.apple.com/archives/Security-announce/2011//Oct/msg00003.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2010-December/051910.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2010-December/051963.htmlnvd
- lists.vmware.com/pipermail/security-announce/2011/000126.htmlnvd
- marc.infonvd
- secunia.com/advisories/42671nvd
- secunia.com/advisories/42707nvd
- secunia.com/advisories/43141nvd
- securitytracker.com/idnvd
- slackware.com/security/viewer.phpnvd
- support.apple.com/kb/HT5002nvd
- support.avaya.com/css/P8/documents/100124923nvd
- www.debian.org/security/2010/dsa-2130nvd
- www.isc.org/announcement/guidance-regarding-dec-1st-2010-security-advisoriesnvd
- www.mandriva.com/security/advisoriesnvd
- www.osvdb.org/69558nvd
- www.redhat.com/support/errata/RHSA-2010-0975.htmlnvd
- www.redhat.com/support/errata/RHSA-2010-0976.htmlnvd
- www.redhat.com/support/errata/RHSA-2010-1000.htmlnvd
- www.securityfocus.com/archive/1/516909/100/0/threadednvd
- www.securityfocus.com/bid/45133nvd
- www.ubuntu.com/usn/USN-1025-1nvd
- www.vmware.com/security/advisories/VMSA-2011-0004.htmlnvd
- www.vupen.com/english/advisories/2011/0267nvd
- www.vupen.com/english/advisories/2011/0606nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12601nvd
News mentions
0No linked articles in our index yet.