This site is deprecated. Please
CLICK HERE for latest updates
Short Name |
DNS:RESOLVER-BO
|
Severity |
Major
|
Recommended |
No
|
Recommended Action |
Drop
|
Category |
DNS
|
Keywords |
Red Hat Enterprise Linux DNS Resolver Buffer Overflow
|
Release Date |
2013/10/01
|
Update Number |
2305
|
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+
|
DNS: Red Hat Enterprise Linux DNS Resolver Buffer Overflow
This signature detects attempts to exploit a known vulnerability against DNS stub resolver library in ISC BIND. A successful attack can lead to arbitrary code execution.
Extended Description
ISC BIND (Berkeley Internet Name Domain) is vulnerable to a buffer overflow condition.
The vulnerability exists in the DNS stub resolver library in ISC BIND. The BIND 4 resolver library contains buffer overflows in functions that are responsible for network name and address requests.
The consequences of this vulnerability will be highly dependant on the details of individual applications using libc. It is likely that exploitation will allow a malicious DNS server to execute arbitrary code with privileges of the vulnerable process. Under some conditions, this may grant an attacker local access, possibly as a privileged user.
Affected Products
- Astaro security_linux 2.0.0 16
- Astaro security_linux 2.0.0 23
- Astaro security_linux 2.0.0 24
- Astaro security_linux 2.0.0 25
- Astaro security_linux 2.0.0 26
- Astaro security_linux 2.0.0 27
- Astaro security_linux 2.0.0 30
- Astaro security_linux 3.2.0 00
- Astaro security_linux 3.2.0 10
- Astaro security_linux 3.2.0 11
- Avaya converged_communications_server 2.0.0
- Avaya intuity LX
- Avaya s8300 R2.0.0
- Avaya s8300 R2.0.1
- Avaya s8500 R2.0.0
- Avaya s8500 R2.0.1
- Avaya s8700 R2.0.0
- Avaya s8700 R2.0.1
- Compaq tru64 4.0.0 f
- Compaq tru64 4.0.0 f PK6 (BL17)
- Compaq tru64 4.0.0 f PK7 (BL18)
- Compaq tru64 4.0.0 g
- Compaq tru64 4.0.0 g PK3 (BL17)
- Compaq tru64 5.0.0 a
- Compaq tru64 5.0.0 a PK3 (BL17)
- Compaq tru64 5.1.0
- Compaq tru64 5.1.0 a
- Compaq tru64 5.1.0 a PK1 (BL1)
- Compaq tru64 5.1.0 a PK2 (BL2)
- Compaq tru64 5.1.0 a PK3 (BL3)
- Compaq tru64 5.1.0 B
- Compaq tru64 5.1.0 b PK1 (BL1)
- Compaq tru64 5.1.0 PK3 (BL17)
- Compaq tru64 5.1.0 PK4 (BL18)
- Compaq tru64 5.1.0 PK5 (BL19)
- Gnu glibc 2.2.0
- Gnu glibc 2.2.5
- Hp hp-ux 10.10.0
- Hp hp-ux 10.20.0
- Hp hp-ux 11.0.0
- Hp hp-ux 11.0.0 4
- Hp hp-ux 11.11.0
- Ibm aix 4.3.3
- Ibm aix 5.1
- Ibm aix 5.2
- Isc bind 4.9.10
- Isc bind 4.9.2
- Isc bind 4.9.3
- Isc bind 4.9.4
- Isc bind 4.9.5
- Isc bind 4.9.6
- Isc bind 4.9.7
- Isc bind 4.9.8
- Isc bind 4.9.9
- Red_hat advanced_workstation_for_the_itanium_processor 2.1.0
- Red_hat advanced_workstation_for_the_itanium_processor 2.1.0 IA64
- Red_hat enterprise_linux_as 2.1
- Red_hat enterprise_linux_as 2.1 IA64
- Red_hat enterprise_linux_es 2.1
- Red_hat enterprise_linux_es 2.1 IA64
- Red_hat enterprise_linux_ws 2.1
- Red_hat enterprise_linux_ws 2.1 IA64
- Sgi irix 6.5.0
- Sgi irix 6.5.1
- Sgi irix 6.5.10
- Sgi irix 6.5.11
- Sgi irix 6.5.12
- Sgi irix 6.5.13
- Sgi irix 6.5.14
- Sgi irix 6.5.15
- Sgi irix 6.5.16
- Sgi irix 6.5.17
- Sgi irix 6.5.18
- Sgi irix 6.5.2
- Sgi irix 6.5.3
- Sgi irix 6.5.4
- Sgi irix 6.5.5
- Sgi irix 6.5.6
- Sgi irix 6.5.7
- Sgi irix 6.5.8
- Sgi irix 6.5.9
- Sun solaris 2.5.1
- Sun solaris 2.5.1_ppc
- Sun solaris 2.5.1_x86
- Sun solaris 2.6
- Sun solaris 2.6_x86
- Xerox docuprint_nps/ips_series 7.x
- Xerox docuprint_nps/ips_series 8.0.0
References