Skip to main content

ISC BIND Recursive Nameservers Denial of Service Vulnerability

Last Update Date: 13 May 2014 Release Date: 12 May 2014 3595 Views

RISK: Medium Risk

TYPE: Servers - Other Servers

TYPE: Other Servers

A vulnerability has been identified in ISC BIND, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an error within the prefetch feature when processing certain queries, which can be exploited to trigger an assertion failure and cause a crash.

Note: This only affects recursive nameservers.


Impact

  • Denial of Service

System / Technologies affected

  • ISC BIND 9.10.0

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to version 9.10.0-P1.

Vulnerability Identifier


Source

 


Related Link