Computer Security
[EN] securityvulns.ru no-pyccku


ISC bind DoS
Published:14.01.2014
Source:
SecurityVulns ID:13524
Type:remote
Threat Level:
6/10
Description:Crash on parsing malformed request to NSEC3-signed zone.
Affected:ISC : bind 9.9
CVE:CVE-2014-0591 (The query_findclosestnsec3 function in query.c in named in ISC BIND 9.6, 9.7, and 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2, and 9.6-ESV before 9.6-ESV-R10-P2, allows remote attackers to cause a denial of service (INSIST assertion failure and daemon exit) via a crafted DNS query to an authoritative nameserver that uses the NSEC3 signing feature.)
Original documentdocumentUBUNTU, [USN-2081-1] Bind vulnerability (14.01.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod