Denial of Service : ISC BIND Unusual DS Record Response Denial of Service Vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.810289

Categoría: Denial of Service

Título: ISC BIND Unusual DS Record Response Denial of Service Vulnerability - Windows

Resumen: ISC BIND is prone to a denial of service vulnerability.

Descripción: Summary:
ISC BIND is prone to a denial of service vulnerability.

Vulnerability Insight:
The flaw exists due to an error in the
processing of an unusually-formed answer containing a DS resource record
received in response to a query.

Vulnerability Impact:
Successful exploitation will allow remote
attackers to cause a denial of service (assertion failure and daemon exit) via
crafted data.

Affected Software/OS:
ISC BIND 9.6-ESV-R9 through 9.6-ESV-R11-W1,
9.8.5 through 9.8.8, 9.9.3 through 9.9.9-P4, 9.9.9-S1 through 9.9.9-S6, 9.10.0 through
9.10.4-P4 and 9.11.0 through 9.11.0-P1.

Solution:
Update to ISC BIND version 9.9.9-P5 or
9.10.4-P5 or 9.11.0-P2 or 9.9.9-S7 or later.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2016-9444
BugTraq ID: 95393
http://www.securityfocus.com/bid/95393
Debian Security Information: DSA-3758 (Google Search)
http://www.debian.org/security/2017/dsa-3758
https://security.gentoo.org/glsa/201708-01
RedHat Security Advisories: RHSA-2017:0062
http://rhn.redhat.com/errata/RHSA-2017-0062.html
RedHat Security Advisories: RHSA-2017:1583
https://access.redhat.com/errata/RHSA-2017:1583
http://www.securitytracker.com/id/1037582

Copyright Copyright (C) 2017 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.810289
Categoría:	Denial of Service
Título:	ISC BIND Unusual DS Record Response Denial of Service Vulnerability - Windows
Resumen:	ISC BIND is prone to a denial of service vulnerability.
Descripción:	Summary: ISC BIND is prone to a denial of service vulnerability. Vulnerability Insight: The flaw exists due to an error in the processing of an unusually-formed answer containing a DS resource record received in response to a query. Vulnerability Impact: Successful exploitation will allow remote attackers to cause a denial of service (assertion failure and daemon exit) via crafted data. Affected Software/OS: ISC BIND 9.6-ESV-R9 through 9.6-ESV-R11-W1, 9.8.5 through 9.8.8, 9.9.3 through 9.9.9-P4, 9.9.9-S1 through 9.9.9-S6, 9.10.0 through 9.10.4-P4 and 9.11.0 through 9.11.0-P1. Solution: Update to ISC BIND version 9.9.9-P5 or 9.10.4-P5 or 9.11.0-P2 or 9.9.9-S7 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-9444 BugTraq ID: 95393 http://www.securityfocus.com/bid/95393 Debian Security Information: DSA-3758 (Google Search) http://www.debian.org/security/2017/dsa-3758 https://security.gentoo.org/glsa/201708-01 RedHat Security Advisories: RHSA-2017:0062 http://rhn.redhat.com/errata/RHSA-2017-0062.html RedHat Security Advisories: RHSA-2017:1583 https://access.redhat.com/errata/RHSA-2017:1583 http://www.securitytracker.com/id/1037582
Copyright	Copyright (C) 2017 Greenbone AG