This site is deprecated. Please
CLICK HERE for latest updates
Short Name |
DNS:BIND-RRSIG-DOS
|
Severity |
Major
|
Recommended |
No
|
Recommended Action |
Drop
|
Category |
DNS
|
Keywords |
ISC BIND RRSIG RRsets Denial of Service
|
Release Date |
2011/08/02
|
Update Number |
1965
|
Supported Platforms |
idp-4.0+, isg-3.4+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+
|
DNS: ISC BIND RRSIG RRsets Denial of Service
This signature detects attempts to exploit a known vulnerability in ISC BIND. The vulnerability is caused by an off-by-one error which further leads to an assertion failure when processing very large RRSIG RRsets in a negative response. An remote attacker may exploit this vulnerability through querying a targeted caching resolver for non-existent names in the domain served by the attacker controlled server. Successful exploitation would result an assertion failure in a server resulting in server crash, leading to denial of service condition.
Extended Description
ISC BIND is prone to a remote denial-of-service vulnerability because the software fails to properly handle certain resource record sets (RRsets).
An attacker can exploit this issue to cause the application process to crash, denying service to legitimate users.
Affected Products
- Apple mac_os_x 10.6
- Apple mac_os_x 10.6.1
- Apple mac_os_x 10.6.2
- Apple mac_os_x 10.6.3
- Apple mac_os_x 10.6.4
- Apple mac_os_x 10.6.5
- Apple mac_os_x 10.6.5
- Apple mac_os_x 10.6.6
- Apple mac_os_x 10.6.7
- Apple mac_os_x 10.6.8
- Apple mac_os_x 10.7
- Apple mac_os_x 10.7.1
- Apple mac_os_x_server 10.6
- Apple mac_os_x_server 10.6.1
- Apple mac_os_x_server 10.6.2
- Apple mac_os_x_server 10.6.3
- Apple mac_os_x_server 10.6.4
- Apple mac_os_x_server 10.6.5
- Apple mac_os_x_server 10.6.5
- Apple mac_os_x_server 10.6.6
- Apple mac_os_x_server 10.6.7
- Apple mac_os_x_server 10.6.8
- Apple mac_os_x_server 10.7
- Apple mac_os_x_server 10.7.1
- Debian linux 5.0
- Debian linux 5.0 Alpha
- Debian linux 5.0 Amd64
- Debian linux 5.0 Arm
- Debian linux 5.0 Armel
- Debian linux 5.0 Hppa
- Debian linux 5.0 Ia-32
- Debian linux 5.0 Ia-64
- Debian linux 5.0 M68k
- Debian linux 5.0 Mips
- Debian linux 5.0 Mipsel
- Debian linux 5.0 Powerpc
- Debian linux 5.0 S/390
- Debian linux 5.0 Sparc
- F5 big-ip_application_security_manager 10.0.1
- F5 big-ip_application_security_manager 10.1.0
- F5 big-ip_application_security_manager 10.2.0
- F5 big-ip_application_security_manager 10.2.2
- F5 big-ip_application_security_manager 9.4.3
- F5 big-ip_application_security_manager 9.4.4
- F5 big-ip_application_security_manager 9.4.5
- F5 big-ip_application_security_manager 9.4.6
- F5 big-ip_application_security_manager 9.4.7
- F5 big-ip_application_security_manager 9.4.8
- F5 big-ip_global_traffic_manager_(gtm)
- F5 big-ip_protocol_security_manager 10.0.0
- F5 big-ip_protocol_security_manager 10.0.1
- F5 big-ip_protocol_security_manager 10.1.0
- F5 big-ip_protocol_security_manager 9.4.5
- F5 big-ip_protocol_security_manager 9.4.6
- F5 big-ip_protocol_security_manager 9.4.7
- F5 big-ip_protocol_security_manager 9.4.8
- Freebsd freebsd 7.0
- Freebsd freebsd 7.0 BETA4
- Freebsd freebsd 7.0 -PRERELEASE
- Freebsd freebsd 7.0-RELEASE
- Freebsd freebsd 7.0-RELEASE-P11
- Freebsd freebsd 7.0-RELEASE-P12
- Freebsd freebsd 7.0-RELEASE-P3
- Freebsd freebsd 7.0-RELEASE-P8
- Freebsd freebsd 7.0 -RELEASE-P9
- Freebsd freebsd 7.0 -RELENG
- Freebsd freebsd 7.0-STABLE
- Freebsd freebsd 7.1
- Freebsd freebsd 7.1 -PRE-RELEASE
- Freebsd freebsd 7.1 Rc1
- Freebsd freebsd 7.1 -RELEASE-P1
- Freebsd freebsd 7.1 -RELEASE-p14
- Freebsd freebsd 7.1 -RELEASE-P2
- Freebsd freebsd 7.1-RELEASE-P4
- Freebsd freebsd 7.1-RELEASE-P5
- Freebsd freebsd 7.1-RELEASE-P6
- Freebsd freebsd 7.1-RELENG
- Freebsd freebsd 7.1-STABLE
- Freebsd freebsd 7.2-PRERELEASE
- Freebsd freebsd 7.2-RC2
- Freebsd freebsd 7.2-RELEASE-P1
- Freebsd freebsd 7.2-RELEASE-P4
- Freebsd freebsd 7.2-STABLE
- Freebsd freebsd 7.3-RELEASE
- Freebsd freebsd 7.3-RELEASE-P1
- Freebsd freebsd 7.3-RELEASE-p3
- Freebsd freebsd 7.3-RELENG
- Freebsd freebsd 7.3-STABLE
- Freebsd freebsd 8.0
- Freebsd freebsd 8.0-RC1
- Freebsd freebsd 8.0-RELEASE
- Freebsd freebsd 8.0 -RELEASE-p5
- Freebsd freebsd 8.0-STABLE
- Freebsd freebsd 8.1-PRERELEASE
- Freebsd freebsd 8.1-RELEASE
- Freebsd freebsd 8.1-RELEASE-p1
- Freebsd freebsd 8.1-RELENG
- Freebsd freebsd 8.1-STABLE
- Freebsd freebsd 8.2-RELEASE-p1
- Freebsd freebsd 8-RELENG
- Isc bind 9.0.0
- Isc bind 9.0.1
- Isc bind 9.1.0
- Isc bind 9.1.1
- Isc bind 9.1.2
- Isc bind 9.1.3
- Isc bind 9.2.0
- Isc bind 9.2.0
- Isc bind 9.2.1
- Isc bind 9.2.2
- Isc bind 9.2.2 P3
- Isc bind 9.2.3
- Isc bind 9.2.4
- Isc bind 9.2.5
- Isc bind 9.2.6
- Isc bind 9.2.7
- Isc bind 9.3.0
- Isc bind 9.3.0
- Isc bind 9.3.1
- Isc bind 9.3.2
- Isc bind 9.3.3
- Isc bind 9.4.0
- Isc bind 9.4.0
- Isc bind 9.4.0A1
- Isc bind 9.4.0A2
- Isc bind 9.4.0A3
- Isc bind 9.4.0A4
- Isc bind 9.4.0A5
- Isc bind 9.4.0A6
- Isc bind 9.4.0B1
- Isc bind 9.4.0B2
- Isc bind 9.4.0B3
- Isc bind 9.4.0 B3
- Isc bind 9.4.0B4
- Isc bind 9.4.0Rc1
- Isc bind 9.4.1
- Isc bind 9.4.2
- Isc bind 9.4.3
- Isc bind 9.4.3B1
- Isc bind 9.4.3B2
- Isc bind 9.4.3B3
- Isc bind 9.4.3 Rc1
- Isc bind 9.4-ESV-R3
- Isc bind 9.5
- Isc bind 9.5.0
- Isc bind 9.5.0A1
- Isc bind 9.5.0A2
- Isc bind 9.5.0A3
- Isc bind 9.5.0A4
- Isc bind 9.5.0A5
- Isc bind 9.5.0A6
- Isc bind 9.5.0A7
- Isc bind 9.5.0B1
- Isc bind 9.5.0B2
- Isc bind 9.5.0B3
- Isc bind 9.5.0-P1
- Isc bind 9.5.0-P2
- Isc bind 9.5.0-P2-W1
- Isc bind 9.5.0-P2-W2
- Isc bind 9.5.0 Rc1
- Isc bind 9.5.1
- Isc bind 9.5.1B1
- Isc bind 9.5.1B2
- Isc bind 9.5.1B3
- Isc bind 9.5.1 Rc1
- Isc bind 9.5.1 Rc2
- Isc bind 9.6.0
- Isc bind 9.6.0A1
- Isc bind 9.6.0B1
- Isc bind 9.6.0-P1
- Isc bind 9.6.0 Rc1
- Isc bind 9.6.0 Rc2
- Isc bind 9.6.3
- Isc bind 9.6 -ESV R2
- Isc bind 9.6-ESV-R3
- Isc bind 9.7.1
- Isc bind 9.7.1 P1
- Isc bind 9.7.1-P2
- Isc bind 9.7.2
- Isc bind 9.7.2-P1
- Isc bind 9.7.2-P2
- Isc bind 9.7.2-P3
- Isc bind 9.7.3
- Isc bind 9.8.0
- Isc bind 9.8.0-P1
- Mandriva corporate_server 4.0
- Mandriva corporate_server 4.0.0 X86 64
- Mandriva enterprise_server 5
- Mandriva enterprise_server 5 X86 64
- Mandriva linux_mandrake 2009.0
- Mandriva linux_mandrake 2009.0 X86 64
- Mandriva linux_mandrake 2010.1
- Mandriva linux_mandrake 2010.1 X86 64
- Red_hat enterprise_linux 5 Server
- Red_hat enterprise_linux_desktop 6
- Red_hat enterprise_linux_desktop_optional 6
- Red_hat enterprise_linux_desktop_workstation 5 Client
- Red_hat enterprise_linux_hpc_node 6
- Red_hat enterprise_linux_hpc_node_optional 6
- Red_hat enterprise_linux_server 6
- Red_hat enterprise_linux_server_optional 6
- Red_hat enterprise_linux_workstation 6
- Red_hat enterprise_linux_workstation_optional 6
- Red_hat fedora 13
- Red_hat fedora 14
- Red_hat fedora 15
- Slackware linux 10.0.0
- Slackware linux 10.1.0
- Slackware linux 10.2.0
- Slackware linux 11.0
- Slackware linux 12.0
- Slackware linux 12.1
- Slackware linux 12.2
- Slackware linux 13.0
- Slackware linux 13.0 X86 64
- Slackware linux 13.1
- Slackware linux 13.1 X86 64
- Slackware linux 13.37
- Slackware linux 13.37 x86_64
- Slackware linux 8.1.0
- Slackware linux 9.0.0
- Slackware linux 9.1.0
- Slackware linux -Current
- Slackware linux X86 64 -Current
- Sun solaris 10 Sparc
- Sun solaris 10 X86
- Sun solaris 11 Express
- Sun solaris 9 Sparc
- Sun solaris 9 X86
- Suse suse_linux_enterprise_desktop 10 SP4
- Suse suse_linux_enterprise_sdk 10 SP4
- Suse suse_linux_enterprise_server 10 SP4
- Ubuntu ubuntu_linux 10.04 Amd64
- Ubuntu ubuntu_linux 10.04 ARM
- Ubuntu ubuntu_linux 10.04 I386
- Ubuntu ubuntu_linux 10.04 Powerpc
- Ubuntu ubuntu_linux 10.04 Sparc
- Ubuntu ubuntu_linux 10.10 amd64
- Ubuntu ubuntu_linux 10.10 ARM
- Ubuntu ubuntu_linux 10.10 i386
- Ubuntu ubuntu_linux 10.10 powerpc
- Ubuntu ubuntu_linux 11.04 amd64
- Ubuntu ubuntu_linux 11.04 ARM
- Ubuntu ubuntu_linux 11.04 i386
- Ubuntu ubuntu_linux 11.04 powerpc
- Ubuntu ubuntu_linux 8.04 LTS Amd64
- Ubuntu ubuntu_linux 8.04 LTS I386
- Ubuntu ubuntu_linux 8.04 LTS Lpia
- Ubuntu ubuntu_linux 8.04 LTS Powerpc
- Ubuntu ubuntu_linux 8.04 LTS Sparc
- Xerox freeflow_print_server_(ffps) 73.A3.31
- Xerox freeflow_print_server_(ffps) 73.B0.73
References