Buffer overflow : ISC BIND Buffer Overflow Vulnerability (CVE-2021-25216)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.145867

Kategorie: Buffer overflow

Titel: ISC BIND Buffer Overflow Vulnerability (CVE-2021-25216) - Linux

Zusammenfassung: ISC BIND is prone to a buffer overflow vulnerability.

Beschreibung: Summary:
ISC BIND is prone to a buffer overflow vulnerability.

Vulnerability Insight:
GSS-TSIG is an extension to the TSIG protocol which is intended
to support the secure exchange of keys for use in verifying the authenticity of communications
between parties on a network.

SPNEGO is a negotiation mechanism used by GSSAPI, the application protocol interface for GSS-TSIG.

The SPNEGO implementation used by BIND has been found to be vulnerable to a buffer overflow attack.

Vulnerability Impact:
BIND servers are vulnerable if they are running an affected version
and are configured to use GSS-TSIG features.

In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but
a server can be rendered vulnerable by explicitly setting values for the tkey-gssapi-keytab or
tkey-gssapi-credential configuration options.

Although the default configuration is not vulnerable, GSS-TSIG is frequently used in networks where
BIND is integrated with Samba, as well as in mixed-server environments that combine BIND servers
with Active Directory domain controllers. For servers that meet these conditions, the ISC SPNEGO
implementation is vulnerable to various attacks, depending on the CPU architecture for which BIND
was built:

- For named binaries compiled for 64-bit platforms, this flaw can be used to trigger a buffer
over-read, leading to a server crash.

- For named binaries compiled for 32-bit platforms, this flaw can be used to trigger a server
crash due to a buffer overflow and possibly also to achieve remote code execution.

Affected Software/OS:
BIND 9.5.0 through 9.11.29, 9.12.0 through 9.16.13, 9.11.3-S1
through 9.11.29-S1, 9.16.8-S1 through 9.16.13-S1 and 9.17.0 through 9.17.1.

Solution:
Update to version 9.11.31, 9.16.15, 9.17.2, 9.11.31-S1,
9.16.15-S1 or later.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2021-25216
https://kb.isc.org/v1/docs/cve-2021-25215
Debian Security Information: DSA-4909 (Google Search)
https://www.debian.org/security/2021/dsa-4909
https://www.zerodayinitiative.com/advisories/ZDI-21-657/
https://lists.debian.org/debian-lts-announce/2021/05/msg00001.html
http://www.openwall.com/lists/oss-security/2021/04/29/1
http://www.openwall.com/lists/oss-security/2021/04/29/2
http://www.openwall.com/lists/oss-security/2021/04/29/3
http://www.openwall.com/lists/oss-security/2021/04/29/4

Copyright Copyright (C) 2021 Greenbone Networks GmbH

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.145867
Kategorie:	Buffer overflow
Titel:	ISC BIND Buffer Overflow Vulnerability (CVE-2021-25216) - Linux
Zusammenfassung:	ISC BIND is prone to a buffer overflow vulnerability.
Beschreibung:	Summary: ISC BIND is prone to a buffer overflow vulnerability. Vulnerability Insight: GSS-TSIG is an extension to the TSIG protocol which is intended to support the secure exchange of keys for use in verifying the authenticity of communications between parties on a network. SPNEGO is a negotiation mechanism used by GSSAPI, the application protocol interface for GSS-TSIG. The SPNEGO implementation used by BIND has been found to be vulnerable to a buffer overflow attack. Vulnerability Impact: BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting values for the tkey-gssapi-keytab or tkey-gssapi-credential configuration options. Although the default configuration is not vulnerable, GSS-TSIG is frequently used in networks where BIND is integrated with Samba, as well as in mixed-server environments that combine BIND servers with Active Directory domain controllers. For servers that meet these conditions, the ISC SPNEGO implementation is vulnerable to various attacks, depending on the CPU architecture for which BIND was built: - For named binaries compiled for 64-bit platforms, this flaw can be used to trigger a buffer over-read, leading to a server crash. - For named binaries compiled for 32-bit platforms, this flaw can be used to trigger a server crash due to a buffer overflow and possibly also to achieve remote code execution. Affected Software/OS: BIND 9.5.0 through 9.11.29, 9.12.0 through 9.16.13, 9.11.3-S1 through 9.11.29-S1, 9.16.8-S1 through 9.16.13-S1 and 9.17.0 through 9.17.1. Solution: Update to version 9.11.31, 9.16.15, 9.17.2, 9.11.31-S1, 9.16.15-S1 or later. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2021-25216 https://kb.isc.org/v1/docs/cve-2021-25215 Debian Security Information: DSA-4909 (Google Search) https://www.debian.org/security/2021/dsa-4909 https://www.zerodayinitiative.com/advisories/ZDI-21-657/ https://lists.debian.org/debian-lts-announce/2021/05/msg00001.html http://www.openwall.com/lists/oss-security/2021/04/29/1 http://www.openwall.com/lists/oss-security/2021/04/29/2 http://www.openwall.com/lists/oss-security/2021/04/29/3 http://www.openwall.com/lists/oss-security/2021/04/29/4
Copyright	Copyright (C) 2021 Greenbone Networks GmbH