icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

ISC BIND 9.7.1 < 9.7.1 P2 'RRSIG' Record Type Remote DoS

Medium

Synopsis

The remote DNS server is vulnerable to a remote denial of service attack.

Description

The remote host is running BIND, an open source name server.

Versions of BIND 9.7.1 earlier than 9.7.1 P2 are potentially affected by a remote denial of service vulnerability when handling specially crafted queries for 'RRSIG' records.

Solution

Upgrade to BIND 9.7.1 P2 or later.