CVE-2015-5477— ISC BIND 拒绝服务漏洞

EPSS 92.75% · P100 更新于 2026-02-21

获取后续新漏洞提醒登录后订阅

一、漏洞 CVE-2015-5477 基础信息

漏洞信息

对漏洞内容有疑问？看看神龙的深度分析是否有帮助！

查看神龙十问 ↗

尽管我们使用了先进的大模型技术，但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性，但请您根据实际情况进行核实和判断。

Vulnerability Title

N/A

来源: 美国国家漏洞数据库 NVD

Vulnerability Description

named in ISC BIND 9.x before 9.9.7-P2 and 9.10.x before 9.10.2-P3 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via TKEY queries.

来源: 美国国家漏洞数据库 NVD

CVSS Information

N/A

来源: 美国国家漏洞数据库 NVD

Vulnerability Type

N/A

来源: 美国国家漏洞数据库 NVD

Vulnerability Title

ISC BIND 拒绝服务漏洞

来源: 中国国家信息安全漏洞库 CNNVD

Vulnerability Description

ISC BIND是美国Internet Systems Consortium（ISC）公司所维护的一套实现了DNS协议的开源软件。 ISC BIND 9.9.7-P1及之前版本和9.10.2-P2及之前版本的named中存在安全漏洞。远程攻击者可借助TKEY查询利用该漏洞造成拒绝服务（REQUIRE断言失败和守护进程退出）。

来源: 中国国家信息安全漏洞库 CNNVD

CVSS Information

N/A

来源: 中国国家信息安全漏洞库 CNNVD

Vulnerability Type

N/A

来源: 中国国家信息安全漏洞库 CNNVD

神龙十问 — AI 深度分析

十问解析：根本原因、利用方式、修复建议、紧迫性。摘要免费，完整版需登录。

查看摘要完整分析（登录）

受影响产品

厂商	产品	影响版本	CPE	订阅
-	n/a	n/a	-

二、漏洞 CVE-2015-5477 的公开POC

#	POC 描述	源链接	神龙链接
1	PoC exploit for CVE-2015-5477 BIND9 TKEY assertion failure	https://github.com/robertdavidgraham/cve-2015-5477	POC详情
2	PoC exploit code for CVE-2015-5477 BIND9 TKEY remote DoS vulnerability	https://github.com/elceef/tkeypoc	POC详情
3	Vulnerability as a service: showcasing CVS-2015-5447, a DDoS condition in the bind9 software	https://github.com/hmlio/vaas-cve-2015-5477	POC详情
4	PoC for BIND9 TKEY assert DoS (CVE-2015-5477)	https://github.com/knqyf263/cve-2015-5477	POC详情
5	PoC exploit for CVE-2015-5477 in php	https://github.com/ilanyu/cve-2015-5477	POC详情
6	None	https://github.com/likescam/ShareDoc_cve-2015-5477	POC详情
7	Exploit code for CVE-2015-5477 POC	https://github.com/xycloops123/TKEY-remote-DoS-vulnerability-exploit	POC详情
8	None	https://github.com/likekabin/ShareDoc_cve-2015-5477	POC详情

AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC

三、漏洞 CVE-2015-5477 的情报信息

Please 登录 to view more intelligence information

https://kb.isc.org/article/AA-01307x_refsource_CONFIRM
https://kb.isc.org/article/AA-01438x_refsource_CONFIRM
https://kb.isc.org/article/AA-01272x_refsource_CONFIRM
http://packetstormsecurity.com/files/132926/BIND-TKEY-Query-Denial-Of-Service.htmlx_refsource_MISC
https://kc.mcafee.com/corporate/index?page=content&id=SB10126x_refsource_CONFIRM
https://kb.isc.org/article/AA-01305x_refsource_CONFIRM
http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.htmlx_refsource_CONFIRM
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.htmlx_refsource_CONFIRM
https://security.netapp.com/advisory/ntap-20160114-0001/x_refsource_CONFIRM
https://kb.juniper.net/JSA10783x_refsource_CONFIRM
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04789415x_refsource_CONFIRM
https://support.apple.com/kb/HT205032x_refsource_CONFIRM
https://kb.isc.org/article/AA-01306x_refsource_CONFIRM
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05095918x_refsource_CONFIRM
2016-01 Security Bulletin: Junos: Vulnerability in ISC BIND named (CVE-2015-5477)x_refsource_CONFIRM
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04952480x_refsource_CONFIRM
https://www.exploit-db.com/exploits/37721/exploitx_refsource_EXPLOIT-DB
https://www.exploit-db.com/exploits/37723/exploitx_refsource_EXPLOIT-DB
http://www.securityfocus.com/bid/76092vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1033100vdb-entryx_refsource_SECTRACK
http://www.debian.org/security/2015/dsa-3319vendor-advisoryx_refsource_DEBIAN
http://marc.info/?l=bugtraq&m=144294073801304&w=2vendor-advisoryx_refsource_HP
http://marc.info/?l=bugtraq&m=144181171013996&w=2vendor-advisoryx_refsource_HP
http://marc.info/?l=bugtraq&m=144017354030745&w=2vendor-advisoryx_refsource_HP
'[security bulletin] HPSBUX03400 SSRT102211 rev.1 - HP-UX Running BIND, Remote Denial of Service (DoS' - MARCvendor-advisoryx_refsource_HP
http://rhn.redhat.com/errata/RHSA-2016-0078.htmlvendor-advisoryx_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2015-1515.htmlvendor-advisoryx_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2016-0079.htmlvendor-advisoryx_refsource_REDHAT
https://security.gentoo.org/glsa/201510-01vendor-advisoryx_refsource_GENTOO
http://rhn.redhat.com/errata/RHSA-2015-1513.htmlvendor-advisoryx_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2015-1514.htmlvendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00044.htmlvendor-advisoryx_refsource_SUSE
http://lists.fedoraproject.org/pipermail/package-announce/2015-August/163015.htmlvendor-advisoryx_refsource_FEDORA
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00048.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00043.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00045.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00033.htmlvendor-advisoryx_refsource_SUSE
http://lists.fedoraproject.org/pipermail/package-announce/2015-August/163007.htmlvendor-advisoryx_refsource_FEDORA
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00001.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00050.htmlvendor-advisoryx_refsource_SUSE
https://nvd.nist.gov/vuln/detail/CVE-2015-5477

同批安全公告 · n/a · 2015-07-29 · 共 10 条

CVE-2015-2977		Webservice-DIC yoyaku_v41 输入验证漏洞
CVE-2015-2978		Webservice-DIC yoyaku_v41 授权问题漏洞
CVE-2015-2979		Webservice-DIC yoyaku_v41 操作系统命令注入漏洞
CVE-2015-4286		Cisco UCS Central Software 输入验证漏洞
CVE-2015-4290		Cisco AnyConnect Secure Mobility Client 缓冲区溢出漏洞
CVE-2015-0732		多款Cisco产品跨站脚本漏洞
CVE-2015-2974		LEMON-S PHP Gazou BBS plus 输入验证漏洞
CVE-2015-4287		Cisco Firepower 9000 Series设备权限许可和访问控制漏洞
CVE-2015-4288		多款Cisco产品加密问题漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2015-5477

暂无评论

目标达成感谢每一位支持者 — 我们达成了 100% 目标！

CVE-2015-5477— ISC BIND 拒绝服务漏洞

一、漏洞 CVE-2015-5477 基础信息

漏洞信息

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

神龙十问 — AI 深度分析

受影响产品

二、漏洞 CVE-2015-5477 的公开POC

三、漏洞 CVE-2015-5477 的情报信息

同批安全公告 · n/a · 2015-07-29 · 共 10 条

IV. Related Vulnerabilities

V. Comments for CVE-2015-5477

发表评论

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

CVE-2015-5477— ISC BIND 拒绝服务漏洞

一、 漏洞 CVE-2015-5477 基础信息

漏洞信息

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

神龙十问 — AI 深度分析

受影响产品

二、漏洞 CVE-2015-5477 的公开POC

三、漏洞 CVE-2015-5477 的情报信息

同批安全公告 · n/a · 2015-07-29 · 共 10 条

IV. Related Vulnerabilities

V. Comments for CVE-2015-5477

发表评论

目标达成感谢每一位支持者 — 我们达成了 100% 目标！

一、漏洞 CVE-2015-5477 基础信息