Alias(es)Bind.InverseQuery.Overflow.UDP, Bind.InverseQuery.Overflow.TCP, BIND.TSIG.Overflow.UDP |
Release DateMay 30, 2006 |
Severitylow |
ImpactSystem compromise: information leak can lead to unauthorized access by an attacker. |
DescriptionThis indicates an attempt to exploit a buffer overflow vulnerability in Bind.An attacker can probe a target DNS server with a specific inverse query. If the DNS server is vulnerable, this may result in information disclosure. With this information, the attacker can gain access to the DNS server with the privileges of the DNS daemon, "named" (potentially root). |
Affected ProductsBIND Versions 4 and Versions 8 through 8.2 are vulnerable to the attack. |
Recommended ActionsUpdate to BIND versions greater than 8.2. |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-1999-0009CVE-2001-0010 CVE-2001-0012 |
Reference/shttp://www.securityfocus.com/bid/2302 (BugTraq)http://www.securityfocus.com/bid/134 (BugTraq) http://www.securityfocus.com/bid/2321 (BugTraq) |
