Announcement Announcement Module
Collapse
No announcement yet.
Advisory - ISC BIND Prefetch Handler denial of service vulnerability Page Title Module
Move Remove Collapse
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • Advisory - ISC BIND Prefetch Handler denial of service vulnerability

    ISC BIND Prefetch Handler denial of service vulnerability


    Severity Rating: HIGH

    Systems Affected

    ISC BIND version 9.10.0

    Overview

    A vulnerability has been reported in BIND which could be exploited by a remote attacker to cause denial of service condition.

    Description
    This vulnerability is due to an error in an unspecified function of the component "Prefetch Handler". A remote attacker could exploit this vulnerability to trigger "REQUIRE" assertion failure and an immediate exit from name daemon(named) to crash the recursive nameserver.
    Note: Authoritative-only servers are not affected.

    Workaround
    Apply the configuration setting prefetch 0; within the options block in “named.conf”

    Solution

    Upgrade to BIND 9 version 9.10.0-P1
    http://www.isc.org/downloads/

    Vendor Information
    ISC BIND
    https://kb.isc.org/article/AA-01161

    References

    ISC BIND
    https://kb.isc.org/article/AA-01161

    SecurityTracker
    http://www.securitytracker.com/id/1030214
Working...
X