AIX 7.1 TL 3 : bind (IV89830) (deprecated)

This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.


Synopsis :

This plugin has been deprecated.

Description :

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2776
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2776 ISC BIND
is vulnerable to a denial of service, caused by an assertion failure
in buffer.c while a nameserver is building responses to a specifically
constructed request. By sending a specially crafted DNS packet, a
remote attacker could exploit this vulnerability to make named exit
unexpectedly with an assertion failure. ISC BIND is vulnerable to a
denial of service, caused by an error when lwresd or the named lwres
option is enabled. By sending an overly long request, a remote
attacker could exploit this vulnerability to cause the daemon to
crash.

This plugin has been deprecated to better accommodate iFix
supersedence with replacement plugin aix_bind_advisory13.nasl (plugin
id 102125).

See also :

http://aix.software.ibm.com/aix/efixes/security/bind_advisory13.asc

Solution :

n/a

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)

Family: AIX Local Security Checks

Nessus Plugin ID: 94966 ()

Bugtraq ID:

CVE ID: CVE-2016-2775
CVE-2016-2776

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now