CVE-2006-0987

Publication date 3 March 2006

Last updated 17 July 2025

Ubuntu priority

The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses, which allows remote attackers to cause a denial of service (traffic amplification) via DNS queries with spoofed source IP addresses.

Status

Show unmaintained releases

No maintained releases are affected by this CVE.

Package	Ubuntu Release	Status
bind9	7.04 feisty	Fixed 9.3.4-2ubuntu2.1
	6.10 edgy	Fixed 9.3.2-2ubuntu3.2
	6.06 LTS dapper	Ignored end of life

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2006-0987