Denial of Service : ISC BIND DoS Vulnerability (CVE-2016-2088)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 146377 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.117784

Kategorie: Denial of Service

Titel: ISC BIND DoS Vulnerability (CVE-2016-2088)

Zusammenfassung: ISC BIND is prone to a denial of service (DoS) vulnerability.

Beschreibung: Summary:
ISC BIND is prone to a denial of service (DoS) vulnerability.

Vulnerability Insight:
BIND 9.10 has preliminary support for DNS cookies (or source
identity tokens), a proposed mechanism designed to allow lightweight transaction security between
a querying party and a nameserver. An error in the BIND code implementing support for this
optional feature permits a deliberately misconstructed packet containing multiple cookie options
to cause named to terminate with an INSIST assertion failure in resolver.c if DNS cookie support
is enabled in the server. Only servers with DNS cookie support enabled at build time can be
affected by this defect. In servers which do not have DNS cookie support selected, any cookies
encountered will be ignored as unknown option types.

Vulnerability Impact:
Servers which are built with DNS cookie support enabled are
vulnerable to denial of service if an attacker can cause them to receive and process a response
that contains multiple cookie options.

Affected Software/OS:
ISC BIND version 9.10.x through 9.10.3-P3.

Solution:
Update to version 9.10.3-P4 or later.

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2016-2088
BugTraq ID: 84290
http://www.securityfocus.com/bid/84290
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/181036.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179904.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178831.html
https://security.gentoo.org/glsa/201610-07
http://www.securitytracker.com/id/1035238

Copyright Copyright (C) 2021 Greenbone Networks GmbH

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.117784
Kategorie:	Denial of Service
Titel:	ISC BIND DoS Vulnerability (CVE-2016-2088)
Zusammenfassung:	ISC BIND is prone to a denial of service (DoS) vulnerability.
Beschreibung:	Summary: ISC BIND is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: BIND 9.10 has preliminary support for DNS cookies (or source identity tokens), a proposed mechanism designed to allow lightweight transaction security between a querying party and a nameserver. An error in the BIND code implementing support for this optional feature permits a deliberately misconstructed packet containing multiple cookie options to cause named to terminate with an INSIST assertion failure in resolver.c if DNS cookie support is enabled in the server. Only servers with DNS cookie support enabled at build time can be affected by this defect. In servers which do not have DNS cookie support selected, any cookies encountered will be ignored as unknown option types. Vulnerability Impact: Servers which are built with DNS cookie support enabled are vulnerable to denial of service if an attacker can cause them to receive and process a response that contains multiple cookie options. Affected Software/OS: ISC BIND version 9.10.x through 9.10.3-P3. Solution: Update to version 9.10.3-P4 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2016-2088 BugTraq ID: 84290 http://www.securityfocus.com/bid/84290 http://lists.fedoraproject.org/pipermail/package-announce/2016-April/181036.html http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179904.html http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178831.html https://security.gentoo.org/glsa/201610-07 http://www.securitytracker.com/id/1035238
Copyright	Copyright (C) 2021 Greenbone Networks GmbH