virus logo Intrusion Prevention

DNS.Amplification.Detection

description-logoDescription

This indicates an attack attempt against a DNS amplification flaw on the name server.
The vulnerability is caused by an error when the misconfigured software handles small DNS query. A remote attack may be able to exploit this to cause a denial of service condition on the affected system. The signature detects for 10 suspicious DNS query within 1 second.

affected-products-logoAffected Products

N/A

Impact logoImpact

Denial of Service: Remote attackers can crash vulnerable systems

recomended-action-logoRecommended Actions

Update your nameserver configuration.

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 32784
Created Sep 05, 2012
Updated Aug 21, 2017
Risk black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Default Action pass
Active
Affected OS All
Affected App Other
Profile Type Anomaly