Korean
<< Back
VID 19052
Severity 30
Port 79
Protocol TCP,UDP
Class DNS
Detailed Description ISC BIND (Berkeley Internet Name Daemon) is a server utility that implements the DNS (domain name service) protocol. It is widely used on the Internet. According to its version number, the installation of ISC BIND on the remote name server is potentially affected by a denial of service vulnerability due to flaw in file rdataset.c related to handling flag values in incoming queries when the 'nxdomain-redirect' option is enabled. An unauthenticated, remote attacker can exploit this, via a crafted query with the right combination of attributes, to cause a REQUIRE assertion ailure, resulting in termination of the service.

* Note: This check solely relied on the banner of the remote DNS server to assess this vulnerability, so this might be a false positive.

* References:
https://kb.isc.org/article/AA-01348

* Platforms Affected:
Internet Software Consortium, BIND version 9.9.8-Sx < 9.9.8-S5
Any operating system Any version
Recommendation Upgrade to the latest version of BIND (9.9.8-S5 or later), available from the Internet Software Consortium (ISC) Web site at http://www.isc.org/downloads/BIND/
Related URL CVE-2016-1284 (CVE)
Related URL 82807 (SecurityFocus)
Related URL (ISS)