Skip to main content

ISC BIND Recursive Query Processing Denial of Service Vulnerability

Last Update Date: 17 Nov 2011 11:48 Release Date: 17 Nov 2011 5986 Views

RISK: High Risk

TYPE: Security software and application - Security Software & Appliance

TYPE: Security Software & Appliance

A vulnerability has been identified in ISC BIND, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an unspecified error when processing recursive queries.

NOTE: The vulnerability is currently being actively exploited.


Impact

  • Denial of Service

System / Technologies affected

  • ISC BIND 9.6.x
  • ISC BIND 9.7.x
  • ISC BIND 9.8.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Upgrade BIND to one of the following patched versions: BIND 9.8.1-P1, 9.7.4-P1, 9.6-ESV-R5-P1, 9.4-ESV-R5-P1

Vulnerability Identifier


Source


Related Link