Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	DNS:BIND-EDNS-DOS
Severity	Major
Recommended	Yes
Recommended Action	Drop
Category	DNS
Keywords	ISC BIND EDNS0 Key-Tag Memory Leak Denial of Service
Release Date	2019/03/13
Update Number	3150
Supported Platforms	idp-4.1.110110609+, isg-3.4.139899+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

DNS: ISC BIND EDNS0 Key-Tag Memory Leak Denial of Service

This signature detects attempts to exploit a known vulnerability against ISC BIND Server. A successful attack can lead to Denial of Service.

Extended Description

A failure to free memory can occur when processing messages having a specific combination of EDNS options. Versions affected are: BIND 9.10.7 -> 9.10.8-P1, 9.11.3 -> 9.11.5-P1, 9.12.0 -> 9.12.3-P1, and versions 9.10.7-S1 -> 9.11.5-S3 of BIND 9 Supported Preview Edition. Versions 9.13.0 -> 9.13.6 of the 9.13 development branch are also affected.

Affected Products

Isc bind 9.10.7
Isc bind 9.10.8
Isc bind 9.11.3
Isc bind 9.11.4
Isc bind 9.11.5
Isc bind 9.12.0
Isc bind 9.12.1
Isc bind 9.12.2
Isc bind 9.12.3
Isc bind 9.13.0
Isc bind 9.13.1
Isc bind 9.13.2
Isc bind 9.13.3
Isc bind 9.13.4
Isc bind 9.13.5

References

CVE: CVE-2018-5744

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

DNS: ISC BIND EDNS0 Key-Tag Memory Leak Denial of Service

Extended Description

Affected Products

References