ISC BIND 9 DNS64 Handling DoS

This script is Copyright (C) 2012-2014 Tenable Network Security, Inc.


Synopsis :

The remote name server is prone to a denial of service attack.

Description :

According to its self-reported version number, the remote installation
of BIND can be forced to crash via maliciously crafted DNS requests.

Note that this vulnerability only affects installs using the 'dns64'
configuration option.

Further note that Nessus has only relied on the version itself and has
not attempted to determine whether or not the install is actually
affected.

See also :

http://www.isc.org/software/bind/advisories/cve-2012-5688
https://kb.isc.org/article/AA-00828
http://ftp.isc.org/isc/bind9/9.8.4-P1/CHANGES
http://ftp.isc.org/isc/bind9/9.9.2-P1/CHANGES

Solution :

Upgrade to BIND 9.8.4-P1 / 9.9.2-P1 or later. Alternatively, disable
DNS64 functionality via configuration options.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 4.3
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: DNS

Nessus Plugin ID: 63166 ()

Bugtraq ID: 56817

CVE ID: CVE-2012-5688

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now