Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

ISC BIND < 8.3.4 Multiple Remote Vulnerabilities (deprecated)

High

Synopsis

The remote host is vulnerable to multiple remote overflows

Description

The remote BIND server is vulnerable to three different vulnerabilities : 1) The remote BIND server, based on its version number, if running recursive DNS functionality, is vulnerable to a buffer overflow. 2) The remote BIND server is vulnerable to a denial of service (crash) via SIG RR elements with invalid expiry times. 3) The remote BIND server is vulnerable to a denial of service. When a DNS lookup is requested on a non-existant sub-domain of a valid domain and an OPT resource record with a large UDP payload is attached, the server may fail.

Solution

Upgrade to BIND 8.3.4 or newer