Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

ISC BIND 9.10.0 Recursive Nameserver DoS

Medium

Synopsis

The remote DNS server may be affected by a remote denial of service vulnerability.

Description

The version of ISC BIND detected on this server is affected by a programming error in the prefetch feature, which can be leveraged by an attacker to crash the affected application with a 'REQUIRE' assertion failure in the 'name.c' file. This issue namely affects recursive nameservers, of which PVS detected relevant traffic from this server.

Solution

BIND 9.10.0-P1 was released by the vendor to fix this vulnerability. Apply the vendor update, or update to a later version.