Korean
<< Back
VID 19037
Severity 30
Port 53
Protocol UDP
Class DNS
Detailed Description ISC BIND (Berkeley Internet Name Daemon) is a server utility that implements the DNS (domain name service) protocol. It is widely used on the Internet.
The BIND daemon, according to its version number, The RFC 5011 implementation in rdata.c in 9.9.x before 9.9.4 allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query with a malformed RDATA section that is not properly handled during construction of a log message, as exploited in the wild in July 2013.

* Note: This check solely relied on the banner of the remote DNS server to assess this vulnerability, so this might be a false positive.

* References:
http://www.securitytracker.com/id/1028838
http://www.isc.org/

* Platforms Affected:
Internet Software Consortium, BIND version 9.9.x < 9.9.4
Any operating system Any version
Recommendation Upgrade to the latest version of BIND (9.9.4 or later), available from the Internet Software Consortium (ISC) Web site at http://www.isc.org/products/BIND/
Related URL CVE-2013-4854 (CVE)
Related URL 61479 (SecurityFocus)
Related URL (ISS)