CVE-1999-0024

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Published Aug 13, 1997

Updated: Nov 20, 2024

Summary

CVE-1999-0024 is a cybersecurity vulnerability affecting BIND, a popular Domain Name System (DNS) software. Hackers can exploit this issue by generating predictable query IDs, leading to cache poisoning. This allows attackers to redirect users to fraudulent websites, potentially stealing sensitive information or installing malware. It's important to note that outdated BIND versions are particularly vulnerable, so regular updates and strong security practices are crucial in mitigating this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Sun Solaris
SunOS
ISC BIND
IBM AIX

Affected Vendors

IBM Corporation
Oracle Corp
Internet Storm Center
Sun.
NEC Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/MxFndi
https://www.cve.org/CVERecord?id=CVE-1999-0024
https://nvd.nist.gov/vuln/detail/CVE-1999-0024

Back to Vulnerability Database