This site is deprecated. Please
CLICK HERE for latest updates
Short Name |
DNS:EXPLOIT:ISC-BIND-RDATA-DOS
|
Severity |
Minor
|
Recommended |
No
|
Recommended Action |
Drop
|
Category |
DNS
|
Keywords |
ISC BIND RDATA Records Handling Denial of Service
|
Release Date |
2013/11/26
|
Update Number |
2322
|
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+
|
DNS: ISC BIND RDATA Records Handling Denial of Service
This signature detects attempts to exploit a known vulnerability against ISC BIND. A successful attack can result in a denial-of-service condition.
Extended Description
The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query with a malformed RDATA section that is not properly handled during construction of a log message, as exploited in the wild in July 2013.
Affected Products
- Fedoraproject fedora 18
- Fedoraproject fedora 19
- Freebsd freebsd 8.0
- Freebsd freebsd 8.1
- Freebsd freebsd 8.2
- Freebsd freebsd 8.3
- Freebsd freebsd 8.4
- Freebsd freebsd 9.0
- Freebsd freebsd 9.1
- Freebsd freebsd 9.2
- Hp hp-ux b.11.31
- Isc bind 9.7.0
- Isc bind 9.7.1
- Isc bind 9.7.2
- Isc bind 9.7.3
- Isc bind 9.7.4
- Isc bind 9.7.5
- Isc bind 9.7.6
- Isc bind 9.7.7
- Isc bind 9.8.0
- Isc bind 9.8.1
- Isc bind 9.8.2
- Isc bind 9.8.3
- Isc bind 9.8.4
- Isc bind 9.8.5
- Isc bind 9.8.6
- Isc bind 9.9.0
- Isc bind 9.9.1
- Isc bind 9.9.2
- Isc bind 9.9.3
- Isc dnsco_bind 9.9.3
- Isc dnsco_bind 9.9.4
- Mandriva business_server 1.0
- Mandriva enterprise_server 5.0
- Novell suse_linux 11
- Opensuse opensuse 11.4
- Redhat enterprise_linux 5
- Redhat enterprise_linux 6.0
- Slackware slackware_linux 12.1
- Slackware slackware_linux 12.2
- Slackware slackware_linux 13.0
- Slackware slackware_linux 13.1
- Slackware slackware_linux 13.37
- Suse suse_linux_enterprise_software_development_kit 11.0
References