ISC BIND 9 'RRSIG' Record Type Remote Denial Of Service Vulnerability Network Vulnerability

Summary

ISC BIND is prone to a remote denial-of-service vulnerability because the software fails to handle certain record types. An attacker can exploit this issue to cause the application to fall into an infinite loop, denying service to legitimate users. BIND versions 9.7.1 and 9.7.1-P1 are vulnerable.

Solution

Updates are available. Please see the references for more information.

References

http://www.isc.org/products/BIND/
https://www.isc.org/software/bind/advisories/cve-2010-0213
https://www.securityfocus.com/bid/41730

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-0213

CVSS	Base Score: 2.6 AV:N/AC:H/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Hummingbird Connectivity FTP service XCWD Overflow
Wireshark Multiple Denial of Service Vulnerabilities - July 12 (Windows)
Wireshark IEEE 802.11 Dissector Denial of Service Vulnerability (Windows)
Wireshark PPP And NFS Dissector Denial of Service Vulnerabilities (Windows)
Samba 'client/mount.cifs.c' Remote Denial of Service Vulnerability

ISC BIND 9 'RRSIG' Record Type Remote Denial of Service Vulnerability

Take action and discover your vulnerabilities