CVE-1999-0184

CVSS 2.0 Score 6.4 of 10 (medium)

Details

Published Jul 1, 1997
Updated: Aug 17, 2022

Summary

CVE-1999-0184 is a vulnerability affecting the bind DNS server. When the server is compiled with the -DALLOW_UPDATES option, it becomes susceptible to unauthorized dynamic updates. Malicious actors can exploit this weakness by modifying DNS records, potentially rerouting traffic or launching phishing attacks. This issue poses a significant risk to network security and integrity. It is recommended that system administrators update their bind installations to a patched version or disable the -DALLOW_UPDATES option.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • ISC BIND

Affected Vendors

  • Internet Storm Center