Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
DNS:EXPLOIT:BIND-KEYPARSE-DOS |
|---|---|
Severity |
Major |
Recommended |
Yes |
Category |
DNS |
Keywords |
ISC BIND DNSSEC Key Parsing Buffer Denial of Service |
Release Date |
2015/10/07 |
Update Number |
2543 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
DNS: ISC BIND DNSSEC Key Parsing Buffer Denial of Service
This signature detects attempts to exploit a known vulnerability against ISC BIND. Attackers can send crafted malicious data to cause denial of service condition to the target service.
Extended Description
buffer.c in named in ISC BIND 9.x before 9.9.7-P3 and 9.10.x before 9.10.2-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) by creating a zone containing a malformed DNSSEC key and issuing a query for a name in that zone.
Affected Products
- Apple mac_os_x_server 5.0.15
- Isc bind 9.10.2
- Isc bind 9.9.7
References
- BugTraq: 76605
- CVE: CVE-2015-5722
- URL: http://securitytracker.com/id?1033452