What is the severity of CVE-2013-4854?

CVE-2013-4854 has a high severity rating due to its potential to cause denial of service.

How do I fix CVE-2013-4854?

To fix CVE-2013-4854, update ISC BIND to version 9.8.5-P2 or later, or apply the relevant patches.

What versions of ISC BIND are affected by CVE-2013-4854?

CVE-2013-4854 affects ISC BIND versions 9.7.x and 9.8.x before 9.8.5-P2, as well as certain 9.9.x versions prior to 9.9.3-P2.

Is it possible to exploit CVE-2013-4854 remotely?

Yes, CVE-2013-4854 can be exploited remotely through specially crafted queries.

What type of vulnerability is CVE-2013-4854 classified as?

CVE-2013-4854 is classified as a denial of service vulnerability.

Vulnerability/
CVE-2013-4854

high

7.8

26/7/2013

6/8/2024

CVE-2013-4854

First published: Fri Jul 26 2013(Updated: )

The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query with a malformed RDATA section that is not properly handled during construction of a log message, as exploited in the wild in July 2013.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
ISC BIND	=9.7.0
ISC BIND	=9.7.0-b1
ISC BIND	=9.7.0-p1
ISC BIND	=9.7.0-p2
ISC BIND	=9.7.0-rc1
ISC BIND	=9.7.0-rc2
ISC BIND	=9.7.1
ISC BIND	=9.7.1-p1
ISC BIND	=9.7.1-p2
ISC BIND	=9.7.1-rc1
ISC BIND	=9.7.2
ISC BIND	=9.7.2-p1
ISC BIND	=9.7.2-p2
ISC BIND	=9.7.2-p3
ISC BIND	=9.7.2-rc1
ISC BIND	=9.7.3
ISC BIND	=9.7.3-b1
ISC BIND	=9.7.3-p1
ISC BIND	=9.7.3-rc1
ISC BIND	=9.7.4
ISC BIND	=9.7.4-b1
ISC BIND	=9.7.4-p1
ISC BIND	=9.7.4-rc1
ISC BIND	=9.7.5
ISC BIND	=9.7.5-b1
ISC BIND	=9.7.5-rc1
ISC BIND	=9.7.5-rc2
ISC BIND	=9.7.6
ISC BIND	=9.7.6-p1
ISC BIND	=9.7.6-p2
ISC BIND	=9.7.7
SUSE Linux Enterprise Software Development Kit	=11.0-sp2
SUSE Linux Enterprise Software Development Kit	=11.0-sp3
SUSE Linux	=11
SUSE Linux	=11
ISC BIND	=9.9.3-s1
ISC BIND	=9.9.4-s1b1
openSUSE	=11.4
ISC BIND	=9.9.0
ISC BIND	=9.9.0-a1
ISC BIND	=9.9.0-a2
ISC BIND	=9.9.0-a3
ISC BIND	=9.9.0-b1
ISC BIND	=9.9.0-b2
ISC BIND	=9.9.0-rc1
ISC BIND	=9.9.0-rc2
ISC BIND	=9.9.0-rc3
ISC BIND	=9.9.0-rc4
ISC BIND	=9.9.1
ISC BIND	=9.9.1-p1
ISC BIND	=9.9.1-p2
ISC BIND	=9.9.2
ISC BIND	=9.9.3
ISC BIND	=9.9.3-b1
ISC BIND	=9.9.3-b2
ISC BIND	=9.9.3-p1
ISC BIND	=9.9.3-rc1
ISC BIND	=9.9.3-rc2
FreeBSD FreeBSD	=8.0
FreeBSD FreeBSD	=8.1
FreeBSD FreeBSD	=8.2
FreeBSD FreeBSD	=8.3
FreeBSD FreeBSD	=8.4
FreeBSD FreeBSD	=9.0
FreeBSD FreeBSD	=9.1
FreeBSD FreeBSD	=9.1-p4
FreeBSD FreeBSD	=9.1-p5
FreeBSD FreeBSD	=9.2-prerelease
FreeBSD FreeBSD	=9.2-rc1
FreeBSD FreeBSD	=9.2-rc2
Mandriva Business Server	=1.0
Mandriva Enterprise Server	=5.0
Red Hat Enterprise Linux	=5
Red Hat Enterprise Linux	=6.0
ISC BIND	=9.8.0
ISC BIND	=9.8.0-a1
ISC BIND	=9.8.0-b1
ISC BIND	=9.8.0-p1
ISC BIND	=9.8.0-p2
ISC BIND	=9.8.0-p4
ISC BIND	=9.8.0-rc1
ISC BIND	=9.8.1
ISC BIND	=9.8.1-b1
ISC BIND	=9.8.1-b2
ISC BIND	=9.8.1-b3
ISC BIND	=9.8.1-p1
ISC BIND	=9.8.1-rc1
ISC BIND	=9.8.2-b1
ISC BIND	=9.8.2-rc1
ISC BIND	=9.8.2-rc2
ISC BIND	=9.8.3
ISC BIND	=9.8.3-p1
ISC BIND	=9.8.3-p2
ISC BIND	=9.8.4
ISC BIND	=9.8.5
ISC BIND	=9.8.5-b1
ISC BIND	=9.8.5-b2
ISC BIND	=9.8.5-p1
ISC BIND	=9.8.5-rc1
ISC BIND	=9.8.5-rc2
ISC BIND	=9.8.6-b1
Fedora	=18
Fedora	=19
HPE HP-UX	=b.11.31
Slackware Linux	=12.1
Slackware Linux	=12.2
Slackware Linux	=13.0
Slackware Linux	=13.1
Slackware Linux	=13.37

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-4854?
CVE-2013-4854 has a high severity rating due to its potential to cause denial of service.
How do I fix CVE-2013-4854?
To fix CVE-2013-4854, update ISC BIND to version 9.8.5-P2 or later, or apply the relevant patches.
What versions of ISC BIND are affected by CVE-2013-4854?
CVE-2013-4854 affects ISC BIND versions 9.7.x and 9.8.x before 9.8.5-P2, as well as certain 9.9.x versions prior to 9.9.3-P2.
Is it possible to exploit CVE-2013-4854 remotely?
Yes, CVE-2013-4854 can be exploited remotely through specially crafted queries.
What type of vulnerability is CVE-2013-4854 classified as?
CVE-2013-4854 is classified as a denial of service vulnerability.

agent/type
agent/references
agent/author
agent/severity
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/isc
canonical/isc bind
version/isc bind/9.7.0
version/isc bind/9.7.0-b1
version/isc bind/9.7.0-p1
version/isc bind/9.7.0-p2
version/isc bind/9.7.0-rc1
version/isc bind/9.7.0-rc2
version/isc bind/9.7.1
version/isc bind/9.7.1-p1
version/isc bind/9.7.1-p2
version/isc bind/9.7.1-rc1
version/isc bind/9.7.2
version/isc bind/9.7.2-p1
version/isc bind/9.7.2-p2
version/isc bind/9.7.2-p3
version/isc bind/9.7.2-rc1
version/isc bind/9.7.3
version/isc bind/9.7.3-b1
version/isc bind/9.7.3-p1
version/isc bind/9.7.3-rc1
version/isc bind/9.7.4
version/isc bind/9.7.4-b1
version/isc bind/9.7.4-p1
version/isc bind/9.7.4-rc1
version/isc bind/9.7.5
version/isc bind/9.7.5-b1
version/isc bind/9.7.5-rc1
version/isc bind/9.7.5-rc2
version/isc bind/9.7.6
version/isc bind/9.7.6-p1
version/isc bind/9.7.6-p2
version/isc bind/9.7.7
vendor/suse
canonical/suse linux enterprise software development kit
version/suse linux enterprise software development kit/11.0-sp2
version/suse linux enterprise software development kit/11.0-sp3
vendor/novell
canonical/suse linux
version/suse linux/11
version/isc bind/9.9.3-s1
version/isc bind/9.9.4-s1b1
vendor/opensuse
canonical/opensuse
version/opensuse/11.4
version/isc bind/9.9.0
version/isc bind/9.9.0-a1
version/isc bind/9.9.0-a2
version/isc bind/9.9.0-a3
version/isc bind/9.9.0-b1
version/isc bind/9.9.0-b2
version/isc bind/9.9.0-rc1
version/isc bind/9.9.0-rc2
version/isc bind/9.9.0-rc3
version/isc bind/9.9.0-rc4
version/isc bind/9.9.1
version/isc bind/9.9.1-p1
version/isc bind/9.9.1-p2
version/isc bind/9.9.2
version/isc bind/9.9.3
version/isc bind/9.9.3-b1
version/isc bind/9.9.3-b2
version/isc bind/9.9.3-p1
version/isc bind/9.9.3-rc1
version/isc bind/9.9.3-rc2
vendor/freebsd
canonical/freebsd freebsd
version/freebsd freebsd/8.0
version/freebsd freebsd/8.1
version/freebsd freebsd/8.2
version/freebsd freebsd/8.3
version/freebsd freebsd/8.4
version/freebsd freebsd/9.0
version/freebsd freebsd/9.1
version/freebsd freebsd/9.1-p4
version/freebsd freebsd/9.1-p5
version/freebsd freebsd/9.2-prerelease
version/freebsd freebsd/9.2-rc1
version/freebsd freebsd/9.2-rc2
vendor/mandriva
canonical/mandriva business server
version/mandriva business server/1.0
canonical/mandriva enterprise server
version/mandriva enterprise server/5.0
vendor/redhat
canonical/red hat enterprise linux
version/red hat enterprise linux/5
version/red hat enterprise linux/6.0
version/isc bind/9.8.0
version/isc bind/9.8.0-a1
version/isc bind/9.8.0-b1
version/isc bind/9.8.0-p1
version/isc bind/9.8.0-p2
version/isc bind/9.8.0-p4
version/isc bind/9.8.0-rc1
version/isc bind/9.8.1
version/isc bind/9.8.1-b1
version/isc bind/9.8.1-b2
version/isc bind/9.8.1-b3
version/isc bind/9.8.1-p1
version/isc bind/9.8.1-rc1
version/isc bind/9.8.2-b1
version/isc bind/9.8.2-rc1
version/isc bind/9.8.2-rc2
version/isc bind/9.8.3
version/isc bind/9.8.3-p1
version/isc bind/9.8.3-p2
version/isc bind/9.8.4
version/isc bind/9.8.5
version/isc bind/9.8.5-b1
version/isc bind/9.8.5-b2
version/isc bind/9.8.5-p1
version/isc bind/9.8.5-rc1
version/isc bind/9.8.5-rc2
version/isc bind/9.8.6-b1
vendor/fedoraproject
canonical/fedora
version/fedora/18
version/fedora/19
vendor/hp
canonical/hpe hp-ux
version/hpe hp-ux/b.11.31
vendor/slackware
canonical/slackware linux
version/slackware linux/12.1
version/slackware linux/12.2
version/slackware linux/13.0
version/slackware linux/13.1
version/slackware linux/13.37