|
|
|
View Notes By
|
|
|
|
Other Documents
|
|
|
|
 |
Vulnerability Note VU#418861
BIND DNS Nameserver, DNSSEC validation Vulnerability
OverviewA vulnerability exists in the way BIND 9 handles recursive client queries that may cause additional records to be added to its cache.
I. DescriptionBIND 9 contains a vulnerability in the way recursive client queries are handled. According to ISC:
A nameserver with DNSSEC validation enabled may incorrectly add unauthenticated records to its cache that are received during the resolution of a recursive client query with checking disabled (CD), or when the nameserver internally triggers a query for missing records for recursive name resolution. Cached records can be returned in response to subsequent client queries with or without requesting DNSSEC records (DO). In addition, some of them can be returned to queries with or without checking disabled (CD).
This issue affects BIND versions 9.0.x, 9.1.x, 9.2.x, 9.3.x, 9.4.0 -> 9.4.3-P3, 9.5.0, 9.5.1, 9.5.2, 9.6.0, 9.6.1-P1.
II. ImpactAn attacker may be able to manipulate cache data and perform DNS Cache Poisoning.
III. SolutionUpgrade
BIND should be upgraded to version 9.4.3-P5, 9.5.2-P2 or 9.6.1-P3.
Disable DNSSEC Validation
According to ISC:
Disabling DNSSEC validation will also prevent incorrect caching of additional records due to this defect. However, this removes DNSSEC validation protection and the ability of the nameserver to deliver authenticated data in query responses.
Systems Affected
| Vendor | Status | Date Notified | Date Updated |
|---|
| Alcatel-Lucent | Unknown | 2009-12-02 | 2009-12-02 |
| Apple Inc. | Unknown | 2009-12-02 | 2009-12-02 |
| BlueCat Networks, Inc. | Unknown | 2009-12-02 | 2009-12-02 |
| Check Point Software Technologies | Unknown | 2009-12-02 | 2009-12-02 |
| Conectiva Inc. | Unknown | 2009-12-02 | 2009-12-02 |
| Cray Inc. | Unknown | 2009-12-02 | 2009-12-02 |
| Debian GNU/Linux | Unknown | 2009-12-02 | 2009-12-02 |
| DragonFly BSD Project | Unknown | 2009-12-02 | 2009-12-02 |
| EMC Corporation | Unknown | 2009-12-02 | 2009-12-02 |
| Engarde Secure Linux | Unknown | 2009-12-02 | 2009-12-02 |
| Ericsson | Unknown | 2009-12-02 | 2009-12-02 |
| F5 Networks, Inc. | Unknown | 2009-12-02 | 2009-12-02 |
| Fedora Project | Unknown | 2009-12-02 | 2009-12-02 |
| FreeBSD Project | Unknown | 2009-12-02 | 2009-12-02 |
| Fujitsu | Unknown | 2009-12-02 | 2009-12-02 |
| Gentoo Linux | Unknown | 2009-12-02 | 2009-12-02 |
| Gnu ADNS | Unknown | 2009-12-02 | 2009-12-02 |
| GNU glibc | Unknown | 2009-12-02 | 2009-12-02 |
| Hewlett-Packard Company | Unknown | 2009-12-02 | 2009-12-02 |
| Hitachi | Unknown | 2009-12-02 | 2009-12-02 |
| IBM Corporation | Unknown | 2009-12-02 | 2009-12-02 |
| IBM Corporation (zseries) | Unknown | 2009-12-02 | 2009-12-02 |
| IBM eServer | Unknown | 2009-12-02 | 2009-12-02 |
| Infoblox | Unknown | 2009-12-02 | 2009-12-02 |
| Internet Systems Consortium | Vulnerable | 2009-12-02 | 2009-12-02 |
| Juniper Networks, Inc. | Unknown | 2009-12-02 | 2009-12-02 |
| Mandriva S. A. | Unknown | 2009-12-02 | 2009-12-02 |
| McAfee | Unknown | 2009-12-02 | 2009-12-02 |
| Men & Mice | Unknown | 2009-12-02 | 2009-12-02 |
| Metasolv Software, Inc. | Unknown | 2009-12-02 | 2009-12-02 |
| Microsoft Corporation | Unknown | 2009-12-02 | 2009-12-02 |
| MontaVista Software, Inc. | Unknown | 2009-12-02 | 2009-12-02 |
| NEC Corporation | Unknown | 2009-12-02 | 2009-12-02 |
| NetBSD | Unknown | 2009-12-02 | 2009-12-02 |
| Nixu | Unknown | 2009-12-02 | 2009-12-02 |
| Nokia | Unknown | 2009-12-02 | 2009-12-02 |
| Nominum | Unknown | 2009-12-02 | 2009-12-02 |
| Nortel Networks, Inc. | Unknown | 2009-12-02 | 2009-12-02 |
| Novell, Inc. | Unknown | 2009-12-02 | 2009-12-02 |
| OpenBSD | Unknown | 2009-12-02 | 2009-12-02 |
| Openwall GNU/*/Linux | Unknown | 2009-12-02 | 2009-12-02 |
| QNX Software Systems Inc. | Unknown | 2009-12-02 | 2009-12-02 |
| Red Hat, Inc. | Unknown | 2009-12-02 | 2009-12-02 |
| SafeNet | Unknown | 2009-12-02 | 2009-12-02 |
| Shadowsupport | Unknown | 2009-12-02 | 2009-12-02 |
| Silicon Graphics, Inc. | Unknown | 2009-12-02 | 2009-12-02 |
| Slackware Linux Inc. | Unknown | 2009-12-02 | 2009-12-02 |
| Sony Corporation | Unknown | 2009-12-02 | 2009-12-02 |
| Sun Microsystems, Inc. | Unknown | 2009-12-02 | 2009-12-02 |
| SUSE Linux | Unknown | 2009-12-02 | 2009-12-02 |
| The SCO Group | Unknown | 2009-12-02 | 2009-12-02 |
| Turbolinux | Unknown | 2009-12-02 | 2009-12-02 |
| Ubuntu | Unknown | 2009-12-02 | 2009-12-02 |
| Unisys | Unknown | 2009-12-02 | 2009-12-02 |
| Wind River Systems, Inc. | Unknown | 2009-12-02 | 2009-12-02 |
References
https://www.isc.org/node/504
Credit
ISC credits Michael Sinatra, UC Berkeley with finding this issue.
This document was written by Chris Taschner.
Other Information
| Date Public: | 2009-11-19 |
| Date First Published: | 2009-12-01 |
| Date Last Updated: | 2010-01-19 |
| CERT Advisory: | |
| CVE-ID(s): | CVE-2009-4022 |
| NVD-ID(s): | CVE-2009-4022 |
| US-CERT Technical Alerts: | |
| Metric: | 0.00 |
| Document Revision: | 14 |
If you have feedback, comments, or additional information about this vulnerability, please send us
email.
|
|
