ISC BIND 9 Multiple DoS Vulnerabilities
High Nessus Plugin ID 79861
SynopsisThe remote name server is affected by multiple denial of service vulnerabilities.
DescriptionAccording to its self-reported version number, the remote installation of BIND is affected by multiple denial of service vulnerabilities :
- A flaw exists within the Domain Name Service due to an error in the code used to follow delegations. A remote attacker, with a maliciously-constructed zone or query, could potentially cause the service to issue unlimited queries leading to resource exhaustion. (CVE-2014-8500)
- Multiple flaws exist with the GeoIP feature. These flaws could allow a remote attacker to cause a denial of service. Note these issues only affect the 9.10.x branch. (CVE-2014-8680)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
SolutionUpgrade to BIND version 9.9.6-P1 / 9.10.1-P1 or later.