Test ID:	1.3.6.1.4.1.25623.1.0.807217
Category:	Denial of Service
Title:	ISC BIND Resolver Cache Vulnerability (Jan 2016)
Summary:	ISC BIND is prone to a resolver cache vulnerability.
Description:	Summary: ISC BIND is prone to a resolver cache vulnerability. Vulnerability Insight: The flaw exists due to the resolver overwrites cached server names and TTL values in NS records during the processing of a response to an A record query. Vulnerability Impact: Successful exploitation will allow remote attackers to trigger continued resolvability of domain names that are no longer registered. Affected Software/OS: ISC BIND versions 9 through 9.8.1-P1. Solution: As a workaround it is recommended to clear the cache, which will remove cached bad records but is not an effective or practical preventative approach. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2012-1033 BugTraq ID: 51898 http://www.securityfocus.com/bid/51898 CERT/CC vulnerability note: VU#542123 http://www.kb.cert.org/vuls/id/542123 HPdes Security Advisory: HPSBUX02835 http://marc.info/?l=bugtraq&m=135638082529878&w=2 HPdes Security Advisory: SSRT100763 http://osvdb.org/78916 RedHat Security Advisories: RHSA-2012:0717 http://rhn.redhat.com/errata/RHSA-2012-0717.html http://www.securitytracker.com/id?1026647 http://secunia.com/advisories/47884 SuSE Security Announcement: openSUSE-SU-2012:0863 (Google Search) https://hermes.opensuse.org/messages/15136456 SuSE Security Announcement: openSUSE-SU-2012:0864 (Google Search) https://hermes.opensuse.org/messages/15136477 XForce ISS Database: isc-bind-update-sec-bypass(73053) https://exchange.xforce.ibmcloud.com/vulnerabilities/73053
Copyright	Copyright (C) 2016 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.