ISC BIND Compressed ZXFR Name Service Query DoS

2000-11-07T00:00:00
ID OSVDB:448
Type osvdb
Reporter OSVDB
Modified 2000-11-07T00:00:00

Description

Vulnerability Description

This host is running an old version of the BIND name server software. BIND versions between 8.2.2p1 and 8.2.2p6 are vulnerable to a denial of service attack in the zone transfer request parsing code. An attacker can exploit this to remotely disable the DNS service on this machine.

Technical Description

This plugin looks for BIND versions 8.2.2.p1-8.2.2p6

Solution Description

Ugrade to that latest version of BIND available from http://www.isc.org.

Short Description

This host is running an old version of the BIND name server software. BIND versions between 8.2.2p1 and 8.2.2p6 are vulnerable to a denial of service attack in the zone transfer request parsing code. An attacker can exploit this to remotely disable the DNS service on this machine.

References:

ISS X-Force ID: 5540 CVE-2000-0887 CERT: CA-2000-20 Bugtraq ID: 1923