Slashdot Mirror


New DoS Vulnerability In All Versions of BIND 9

Icemaann writes "ISC is reporting that a new, remotely exploitable vulnerability has been found in all versions of BIND 9. A specially crafted dynamic update packet will make BIND die with an assertion error. There is an exploit in the wild and there are no access control workarounds. Red Hat claims that the exploit does not affect BIND servers that do not allow dynamic updates, but the ISC post refutes that. This is a high-priority vulnerability and DNS operators will want to upgrade BIND to the latest patch level."

3 of 197 comments (clear)

  1. Re:Interesting by Minwee · · Score: 5, Funny

    It is now.

    This vulnerability also gives the three people running DJB DNS a much needed opportunity for some smugness.

  2. Re:Interesting by kriebz · · Score: 5, Funny

    I was under the impression they had smugness to spare.

  3. Re:All versions of Bind 9? by tygerstripes · · Score: 5, Funny

    But it's a DOS vulnerability!!! Sheesh, read the title...

    --
    Meta will eat itself