Fortiguard

Improper Input Validation Vulnerability for ISC BIND 9

Description

An attacker controlling a malicious nameserver could respond with two responses in quick succession, each with a 'CLIENT-SUBNET' pseudo-option and where the first is broken. Processing the second response after the first causes named to terminate.

Affected Applications

ISC BIND 9

CVE References

CVE-2022-3488

Other References

https://kb.isc.org/v1/docs/aa-00913

ID	4744
Created	Feb 22, 2023
Description Updated	Feb 22, 2023
Severity
Coverage	FortiClient
OS	Linux
Vendor	ISC
Patch	manual
Application	ISC BIND 9

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiGate

FortiClient

FortiSandBox

FortiMail

FortiADC

FortiWeb

FortiCNP

FortiNDR

FortiDeceptor

FortiEDR

FortiAnalyzer

FortiTester

Threat Encyclopedia

Improper Input Validation Vulnerability for ISC BIND 9

Description

Affected Applications

CVE References

Other References

Telemetry

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiGate

FortiClient

FortiSandBox

FortiMail

FortiADC

FortiWeb

FortiCNP

FortiNDR

FortiDeceptor

FortiEDR

FortiAnalyzer

FortiTester

Threat Intelligence Center

Resource Center

About

About FortiGuard Labs

Partners

Threat Encyclopedia

Improper Input Validation Vulnerability for ISC BIND 9

Description

Affected Applications

CVE References

Other References

Telemetry

Threat Intelligence
Center