ISC BIND Windows Netmask Processing Vulnerability

Last Update Date: 8 Nov 2013 10:24 Release Date: 8 Nov 2013 4084 Views

RISK: Medium Risk

Medium Risk

TYPE: Servers - Network Management

TYPE: Network Management

A vulnerability has been identified in BIND. A remote user on the local network can bypass access control restrictions.

 

On Windows-based systems, an all zero netmask may cause a match on any IPv4 address. A remote user on the local network may be able to access BIND features that are configured to allow access to "localnets".

Impact

  • Security Restriction Bypass

System / Technologies affected

  • Prior to versions 9.6-ESV-R10-P1, 9.8.6-P1, 9.9.4-P1

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • The vendor has issued a fix (9.6-ESV-R10-P1, 9.8.6-P1, 9.9.4-P1).

Vulnerability Identifier

Source

Related Link

Share with

Previous

IBM Java Multiple Vulnerabilities

8 Nov 2013 4031 Views

Next

Cisco IOS SIP Processing Vulnerability

8 Nov 2013 3954 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY