Release DateDec 23, 2011 |
Severityhigh |
ImpactDenial of Service: Remote attackers can crash vulnerable systems. |
DescriptionThis indicates an attack attempt against a Denial of Service vulnerability inISC BIND 9. The vulnerability is caused by an error when the vulnerable software handles a malicious DNS request. Successful exploit attempts will likely cause the program to crash,resulting in a denial of service condition. |
Affected ProductsISC BIND 9 |
Recommended ActionsUpgrade to the latest version, available from the websitehttp://www.mandriva.com/en/downloads/ |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2011-4313 |
Reference/shttp://www.isc.org/software/bind/advisories/cve-2011-tbdhttp://www.theregister.co.uk/2011/11/16/bind_in_a_bind_again/ |
