CVE-2006-4096
EPSS 19.6%
Description
BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via a flood of recursive queries, which cause an INSIST failure when the response is received after the recursion queue is empty.
How to fix CVE-2006-4096
To remediate CVE-2006-4096, upgrade the affected package to a fixed version below.
- Debian/bind9—upgrade to 1:9.3.2-P1-1 or later
Is CVE-2006-4096 being exploited?
Moderate — EPSS is 19.6%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 1:9.3.2-P1-1