Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1907

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2011-1907
Last Modified 06 Sep 2011 11:16:46
Published 09 May 2011 06:55:03
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-1907

Summary

ISC BIND 9.8.x before 9.8.0-P1, when Response Policy Zones (RPZ) RRset replacement is enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an RRSIG query.

Vulnerable Systems

Application

  • Isc Bind 9.8.0


References

CONFIRM - https://www.isc.org/CVE-2011-1907

XF - iscbind-rrsig-dos(67297)

VUPEN - ADV-2011-1183

SECTRACK - 1025503

BID - 47734

BUGTRAQ - 20110506 Security Advisory: DNS BIND Security Advisory: RRSIG Queries Can Trigger Server Crash When Using Response Policy Zones

SECUNIA - 44416


Last Updated: 27 May 2016 10:56:52