Vulnerabilities > CVE-2011-1907 - Resource Management Errors vulnerability in ISC Bind 9.8.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
ISC BIND 9.8.x before 9.8.0-P1, when Response Policy Zones (RPZ) RRset replacement is enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an RRSIG query.
Common Weakness Enumeration (CWE)
Nessus
NASL family | DNS |
NASL id | BIND9_980_P1.NASL |
description | According to its self-reported version number, the remote installation of BIND is potentially affected by a denial of service vulnerability. This issue only affects BIND installations that use the RPZ feature configured for RRset replacement. When RPZ is being used, a query of type RRSIG for a name configured for RRset replacement will trigger an assertion failure and cause the name server process to exit. Note that Nessus has only relied on the version itself and not attempted to determine whether the install actually uses the RPZ feature. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 53842 |
published | 2011-05-09 |
reporter | This script is Copyright (C) 2011-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/53842 |
title | ISC BIND Response Policy Zones RRSIG Query Assertion Failure DoS |
code |
|
Seebug
bulletinFamily | exploit |
description | BUGTRAQ ID: 47734 CVE ID: CVE-2011-1907 BIND是一个应用非常广泛的DNS协议的实现,由ISC负责维护,具体的开发由Nominum公司完成。 ISC BIND在实现上存在远程拒绝服务漏洞,由于未能正确处理某些记录类型,攻击者可利用此漏洞造成应用程序进程崩溃,拒绝服务合法用户。 此问题仅影响将配置的RPZ功能用于RRset替换的BIND用户。BIND 9.8.0引入了RPZ机制,用于修改递归服务器根据一组规则返回的DNS响应。在典型配置中,RPZ用于强制可疑名称的NXDOMAIN响应,也用于RRset替换。在使用RPZ时,配置了RRset替换的名称类型RRSIG查询将触发断言失败,造成退出DNS进程 RedHat Fedora 15 厂商补丁: RedHat ------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.redhat.com/apps/support/errata/index.html |
id | SSV:20528 |
last seen | 2017-11-19 |
modified | 2011-05-10 |
published | 2011-05-10 |
reporter | Root |
title | ISC BIND 9 RRSIG Query类型远程拒绝服务漏洞 |
References
- http://secunia.com/advisories/44416
- http://www.securityfocus.com/archive/1/517900/100/0/threaded
- http://www.securityfocus.com/bid/47734
- http://www.securitytracker.com/id?1025503
- http://www.vupen.com/english/advisories/2011/1183
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67297
- https://www.isc.org/CVE-2011-1907
- http://secunia.com/advisories/44416
- https://www.isc.org/CVE-2011-1907
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67297
- http://www.vupen.com/english/advisories/2011/1183
- http://www.securitytracker.com/id?1025503
- http://www.securityfocus.com/bid/47734
- http://www.securityfocus.com/archive/1/517900/100/0/threaded