ISC BIND < 8.3.4 Multiple Remote Vulnerabilities (deprecated)
High Nessus Network Monitor Plugin ID 1006
SynopsisThe remote host is vulnerable to multiple remote overflows
DescriptionThe remote BIND server is vulnerable to three different vulnerabilities :
1) The remote BIND server, based on its version number, if running recursive DNS functionality, is vulnerable to a buffer overflow.
2) The remote BIND server is vulnerable to a denial of service (crash) via SIG RR elements with invalid expiry times.
3) The remote BIND server is vulnerable to a denial of service.
When a DNS lookup is requested on a non-existant sub-domain of a valid domain and an OPT resource record with a large UDP payload is attached, the server may fail.
SolutionUpgrade to BIND 8.3.4 or newer