Buffer overflow : ISC BIND Buffer Overflow Vulnerability (CVE-2021-25216)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.145867

Categoría: Buffer overflow

Título: ISC BIND Buffer Overflow Vulnerability (CVE-2021-25216) - Linux

Resumen: ISC BIND is prone to a buffer overflow vulnerability.

Descripción: Summary:
ISC BIND is prone to a buffer overflow vulnerability.

Vulnerability Insight:
GSS-TSIG is an extension to the TSIG protocol which is intended
to support the secure exchange of keys for use in verifying the authenticity of communications
between parties on a network.

SPNEGO is a negotiation mechanism used by GSSAPI, the application protocol interface for GSS-TSIG.

The SPNEGO implementation used by BIND has been found to be vulnerable to a buffer overflow attack.

Vulnerability Impact:
BIND servers are vulnerable if they are running an affected version
and are configured to use GSS-TSIG features.

In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but
a server can be rendered vulnerable by explicitly setting values for the tkey-gssapi-keytab or
tkey-gssapi-credential configuration options.

Although the default configuration is not vulnerable, GSS-TSIG is frequently used in networks where
BIND is integrated with Samba, as well as in mixed-server environments that combine BIND servers
with Active Directory domain controllers. For servers that meet these conditions, the ISC SPNEGO
implementation is vulnerable to various attacks, depending on the CPU architecture for which BIND
was built:

- For named binaries compiled for 64-bit platforms, this flaw can be used to trigger a buffer
over-read, leading to a server crash.

- For named binaries compiled for 32-bit platforms, this flaw can be used to trigger a server
crash due to a buffer overflow and possibly also to achieve remote code execution.

Affected Software/OS:
BIND 9.5.0 through 9.11.29, 9.12.0 through 9.16.13, 9.11.3-S1
through 9.11.29-S1, 9.16.8-S1 through 9.16.13-S1 and 9.17.0 through 9.17.1.

Solution:
Update to version 9.11.31, 9.16.15, 9.17.2, 9.11.31-S1,
9.16.15-S1 or later.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2021-25216
https://kb.isc.org/v1/docs/cve-2021-25215
Debian Security Information: DSA-4909 (Google Search)
https://www.debian.org/security/2021/dsa-4909
https://www.zerodayinitiative.com/advisories/ZDI-21-657/
https://lists.debian.org/debian-lts-announce/2021/05/msg00001.html
http://www.openwall.com/lists/oss-security/2021/04/29/1
http://www.openwall.com/lists/oss-security/2021/04/29/2
http://www.openwall.com/lists/oss-security/2021/04/29/3
http://www.openwall.com/lists/oss-security/2021/04/29/4

Copyright Copyright (C) 2021 Greenbone Networks GmbH

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.145867
Categoría:	Buffer overflow
Título:	ISC BIND Buffer Overflow Vulnerability (CVE-2021-25216) - Linux
Resumen:	ISC BIND is prone to a buffer overflow vulnerability.
Descripción:	Summary: ISC BIND is prone to a buffer overflow vulnerability. Vulnerability Insight: GSS-TSIG is an extension to the TSIG protocol which is intended to support the secure exchange of keys for use in verifying the authenticity of communications between parties on a network. SPNEGO is a negotiation mechanism used by GSSAPI, the application protocol interface for GSS-TSIG. The SPNEGO implementation used by BIND has been found to be vulnerable to a buffer overflow attack. Vulnerability Impact: BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting values for the tkey-gssapi-keytab or tkey-gssapi-credential configuration options. Although the default configuration is not vulnerable, GSS-TSIG is frequently used in networks where BIND is integrated with Samba, as well as in mixed-server environments that combine BIND servers with Active Directory domain controllers. For servers that meet these conditions, the ISC SPNEGO implementation is vulnerable to various attacks, depending on the CPU architecture for which BIND was built: - For named binaries compiled for 64-bit platforms, this flaw can be used to trigger a buffer over-read, leading to a server crash. - For named binaries compiled for 32-bit platforms, this flaw can be used to trigger a server crash due to a buffer overflow and possibly also to achieve remote code execution. Affected Software/OS: BIND 9.5.0 through 9.11.29, 9.12.0 through 9.16.13, 9.11.3-S1 through 9.11.29-S1, 9.16.8-S1 through 9.16.13-S1 and 9.17.0 through 9.17.1. Solution: Update to version 9.11.31, 9.16.15, 9.17.2, 9.11.31-S1, 9.16.15-S1 or later. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2021-25216 https://kb.isc.org/v1/docs/cve-2021-25215 Debian Security Information: DSA-4909 (Google Search) https://www.debian.org/security/2021/dsa-4909 https://www.zerodayinitiative.com/advisories/ZDI-21-657/ https://lists.debian.org/debian-lts-announce/2021/05/msg00001.html http://www.openwall.com/lists/oss-security/2021/04/29/1 http://www.openwall.com/lists/oss-security/2021/04/29/2 http://www.openwall.com/lists/oss-security/2021/04/29/3 http://www.openwall.com/lists/oss-security/2021/04/29/4
Copyright	Copyright (C) 2021 Greenbone Networks GmbH