AIX 5.3 TL 12 : bind9 (IV62327)
Medium Nessus Plugin ID 77256
Synopsis
The remote AIX host is missing a security patch.
Description
The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses, which allows remote attackers to cause a denial of service (traffic amplification via DNS queries with spoofed source IP addresses. Please see following for more information :
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0987
Solution
Install the appropriate interim fix.