virus logo Intrusion Prevention

ISC.BIND.TKEY.SPNEGO.der_get_oid.Integer.Overflow

description-logoDescription

This indicates an attack attempt to exploit an Integer Overflow Vulnerability in ISC BIND.
The vulnerability occurs while processing a OID of a TKEY DNS query. A remote, unauthenticated attacker could exploit this vulnerability by sending a crafted DNS query to an affected server. Successful exploitation would result in information disclosure, denial-of-service, and in worst case remote code execution.

affected-products-logoAffected Products

ISC BIND prior to 9.11.31
ISC BIND prior to 9.16.15
ISC BIND prior to 9.17.12
ISC BIND Supported Preview Edition prior to 9.11.31-S1
ISC BIND Supported Preview Edition prior to 9.16.15-S1

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://kb.isc.org/docs/cve-2021-25216

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2021-09-17 18.160 Default_action:pass:drop
2021-09-08 18.153
ID 50714
Created Aug 30, 2021
Updated Sep 16, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2021-25216
Exploit Prediction Score 33.62%
Default Action drop
Active
Affected OS Windows, Linux, BSD, Solaris
Affected App Other