87 matches found
FreeBSD : FreeBSD -- BIND remote denial of service (13031d98-9bd1-11e2-a7be-8c705af55518)
A flaw in a library used by BIND allows an attacker to deliberately cause excessive memory consumption by the named8 process. This affects both recursive and authoritative servers. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
FreeBSD -- BIND remote denial of service
A flaw in a library used by BIND allows an attacker to deliberately cause excessive memory consumption by the named8 process. This affects both recursive and authoritative servers...
CVE-2013-2266
libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows remote attackers to cause a denial of service memory consumption via a crafted regular expression, as demonstrated by a memory-exhaustion attack again...
AIX 5.3 TL 12 : bind9 (IV30368)
If specific combinations of RDATA are loaded into a nameserver, either via cache or an authoritative zone, a subsequent query for a related record will cause named to lock up. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text in the description was extracted from AIX Security Advisory...
FreeBSD : dns/bind9* -- Several vulnerabilities (53a0ddef-0208-11e2-8afa-0024e830109b)
ISC reports : Prevents a crash when queried for a record whose RDATA exceeds 65535 bytes. Prevents a crash when validating caused by using 'Bad cache' data before it has been initialized. ISCQUEUE handling for recursive clients was updated to address a race condition that could cause a memory lea...
New BIND Release Fixes High-Severity Remote Bugs
The Internet Systems Consortium has released new versions of the ubiquitous BIND server software that fix a pair of vulnerabilities in existing releases, one of which enables an attacker to stop the software from running on remote DNS servers. The high-severity vulnerability in many versions of t...
BIND 8.2.x (TSIG) Remote Root Stack Overflow Exploit (3)
No description provided by source. / copyright LAST STAGE OF DELIRIUM feb 2001 poland ://lsd-pl.net/ / / bind 8.2 8.2.1 8.2.2 8.2.2-PX Solaris 2.7 x86 / / The code establishes a TCP connection with port 53 of a target system. / / It makes use of the "infoleek" bug through UDP to obtain the base /...