Skip Ribbon Commands
Skip to main content
Computer Emergency Response Team of Mauritius (CERT-MU)
Computer Emergency Response Team of Mauritius>Vulnerability Note VN-2017-26

Vulnerability Note VN-2017-26


Vulnerability in ISC BIND
Severity Rating: High
System Affected:  
 
  • Version(s): 9.9.3-S1 - 9.9.9-S7, 9.9.3 - 9.9.9-P5, 9.9.10b1, 9.10.0 - 9.10.4-P5, 9.10.5b1, 9.11.0 - 9.11.0-P2, 9.11.1b1
Description:
A vulnerability has been identified in ISC BIND that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the target system.

The vulnerability exists because of an improper validation of user-supplied input by the affected software. An attacker could exploit this vulnerability by submitting a crafted query response to the affected software. A successful exploitation of this vulnerability could allow the attacker to cause the targeted service to stop functioning, thus resulting in a DoS condition.
Source:
Solution
Users are advised to apply updates.
ISC Bind
 
 
Vendor Information
ISC Bind
 
CVE Information
 
 
References
Security Tracker
Cisco Security Bulletin
 
Security Tracker
 
 
Contact Information
 
Postal address
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street
Port Louis