Denial of Service : ISC BIND DoS Vulnerability (CVE-2016-2088)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.117784

Categoría: Denial of Service

Título: ISC BIND DoS Vulnerability (CVE-2016-2088)

Resumen: ISC BIND is prone to a denial of service (DoS) vulnerability.

Descripción: Summary:
ISC BIND is prone to a denial of service (DoS) vulnerability.

Vulnerability Insight:
BIND 9.10 has preliminary support for DNS cookies (or source
identity tokens), a proposed mechanism designed to allow lightweight transaction security between
a querying party and a nameserver. An error in the BIND code implementing support for this
optional feature permits a deliberately misconstructed packet containing multiple cookie options
to cause named to terminate with an INSIST assertion failure in resolver.c if DNS cookie support
is enabled in the server. Only servers with DNS cookie support enabled at build time can be
affected by this defect. In servers which do not have DNS cookie support selected, any cookies
encountered will be ignored as unknown option types.

Vulnerability Impact:
Servers which are built with DNS cookie support enabled are
vulnerable to denial of service if an attacker can cause them to receive and process a response
that contains multiple cookie options.

Affected Software/OS:
ISC BIND version 9.10.x through 9.10.3-P3.

Solution:
Update to version 9.10.3-P4 or later.

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2016-2088
BugTraq ID: 84290
http://www.securityfocus.com/bid/84290
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/181036.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179904.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178831.html
https://security.gentoo.org/glsa/201610-07
http://www.securitytracker.com/id/1035238

Copyright Copyright (C) 2021 Greenbone Networks GmbH

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.117784
Categoría:	Denial of Service
Título:	ISC BIND DoS Vulnerability (CVE-2016-2088)
Resumen:	ISC BIND is prone to a denial of service (DoS) vulnerability.
Descripción:	Summary: ISC BIND is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: BIND 9.10 has preliminary support for DNS cookies (or source identity tokens), a proposed mechanism designed to allow lightweight transaction security between a querying party and a nameserver. An error in the BIND code implementing support for this optional feature permits a deliberately misconstructed packet containing multiple cookie options to cause named to terminate with an INSIST assertion failure in resolver.c if DNS cookie support is enabled in the server. Only servers with DNS cookie support enabled at build time can be affected by this defect. In servers which do not have DNS cookie support selected, any cookies encountered will be ignored as unknown option types. Vulnerability Impact: Servers which are built with DNS cookie support enabled are vulnerable to denial of service if an attacker can cause them to receive and process a response that contains multiple cookie options. Affected Software/OS: ISC BIND version 9.10.x through 9.10.3-P3. Solution: Update to version 9.10.3-P4 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-2088 BugTraq ID: 84290 http://www.securityfocus.com/bid/84290 http://lists.fedoraproject.org/pipermail/package-announce/2016-April/181036.html http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179904.html http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178831.html https://security.gentoo.org/glsa/201610-07 http://www.securitytracker.com/id/1035238
Copyright	Copyright (C) 2021 Greenbone Networks GmbH