ISC.BIND.DNS.GSS-TSIG.SPNEGO.GSSAPI.Token.DoS
Description
This indicates an attack attempt to exploit a Denial of Service Vulnerability in ISC Bind.
This vulnerability is due to improper input validation for incoming DNS message. A remote, unauthenticated attacker could exploit this vulnerability by sending a crafted DNS packet to the target server. Successfully exploiting this vulnerability could result in denial of service.
Affected Products
ISC Bind version 9.5.0 to 9.11.27
ISC Bind version 9.12.0 to 9.16.11
ISC Bind version 9.17.0 to 9.17.1
ISC Bind version 9.11.3-S1 to 9.11.27-S1
ISC Bind version 9.16.8-S1 to 9.16.11-S1
Siemens SINEC Infrastructure Network Service version 1.0.1.0 and prior
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Apply the latest update or patch from the vendor.
https://www.isc.org/download/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |