Business

News

 
More...

Alerts

 
More...

Events

 
More...
 
     
 

ISC BIND Zone Data DNS Query Handling Denial of Service Vulnerability

 

Systems Affected


ISC BIND 9.7.x through 9.9.x before 9.9.7-P1
ISC BIND 9.10.x before 9.10.2-P2

Threat Level


High


Overview


Vulnerability has been reported in ISC BIND that could allow a remote attacker to cause Denial of Service condition.


Description


This vulnerability exists while handling certain zone data when configured to perform DNSSEC validation. A remote attacker could exploit this issue using specially crafted zone data which could cause named to exit unexpectedly with an assertion failure resulting in denial of service condition.


Impact



Solution/ Workarounds


Upgrade to BIND versions 9.9.7-P1 or 9.10.2-P2
https://www.isc.org/downloads/


References


http://www.cert-in.org.in/


Disclaimer


The information provided herein is on "as is" basis, without warranty of any kind.


 
     

© Copyright Sri Lanka CERT|CC. All Rights Reserved.