Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
DNS:ISC-BIND-PACKAGE-DOS |
|---|---|
Severity |
Major |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
DNS |
Keywords |
ISC BIND buffer.c REQUIRE Assertion Failure Denial of Service |
Release Date |
2016/02/08 |
Update Number |
2642 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
DNS: ISC BIND buffer.c REQUIRE Assertion Failure Denial of Service
This signature detects attempts to exploit a known vulnerability against BIND DNS package bind9. A successful exploit can lead to denial of service.
Extended Description
buffer.c in named in ISC BIND 9.10.x before 9.10.3-P3, when debug logging is enabled, allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit, or daemon crash) or possibly have unspecified other impact via (1) OPT data or (2) an ECS option.
Affected Products
- Isc bind 9.0
- Isc bind 9.0.1
- Isc bind 9.1
- Isc bind 9.10.1
- Isc bind 9.10.2
- Isc bind 9.10.3
- Isc bind 9.1.1
- Isc bind 9.1.2
- Isc bind 9.1.3
- Isc bind 9.2
- Isc bind 9.2.0
- Isc bind 9.2.1
- Isc bind 9.2.2
- Isc bind 9.2.3
- Isc bind 9.2.4
- Isc bind 9.2.5
- Isc bind 9.2.6
- Isc bind 9.2.7
- Isc bind 9.3
- Isc bind 9.3.0
- Isc bind 9.3.1
- Isc bind 9.3.2
- Isc bind 9.3.3
- Isc bind 9.4
- Isc bind 9.4.0
- Isc bind 9.4.1
- Isc bind 9.4.2
- Isc bind 9.4.3
- Isc bind 9.5
- Isc bind 9.5.0
- Isc bind 9.5.1
- Isc bind 9.5.2
- Isc bind 9.5.3
- Isc bind 9.6
- Isc bind 9.9.8
References
- CVE: CVE-2015-8705