Vulnerability Note VU#581682

ISC BIND 8 fails to properly dereference cache SIG RR elements with invalid expiry times from the internal database

Original Release date: 13 Nov 2002 | Last revised: 25 Feb 2003

Overview

A remotely exploitable denial-of-service vulnerability exists in BIND.

Description

A remotely exploitable denial-of-service vulnerability exists in BIND 8.2 - 8.2.6 and BIND 8.3.0 - 8.3.3. ISC's description of this vulnerability states:

    It is possible to de-reference a NULL pointer for certian [sic] signature expire values.

Impact

The BIND daemon will shut down. As a result, clients will not be able to connect to the service to resolve queries.

Solution

Apply a patch from your vendor. In the absence of a patch, you may wish to consider ISC's recommendation, which is upgrading to "BIND 4.9.11, BIND 8.2.7, BIND 8.3.4 or preferably BIND 9." Additionally, ISC indicates, "BIND 4 is officially deprecated. Only security fixes will be issued for BIND 4."

Disable recursion if possible.

Systems Affected (Learn More)

VendorStatusDate NotifiedDate Updated
Apple Computer Inc.Affected-02 Dec 2002
Nortel NetworksAffected-03 Dec 2002
Red Hat Inc.Affected12 Nov 200213 Nov 2002
MontaVista SoftwareNot Affected12 Nov 200213 Nov 2002
NominumNot Affected-13 Nov 2002
AlcatelUnknown-25 Feb 2003
If you are a vendor and your product is affected, let us know.

CVSS Metrics (Learn More)

Group Score Vector
Base N/A N/A
Temporal N/A N/A
Environmental N/A N/A

References

Credit

Internet Security Systems is credited for discovering this vulnerability.

This document was written by Ian A Finlay.

Other Information

  • CVE IDs: CAN-2002-1221
  • Date Public: 12 Nov 2002
  • Date First Published: 13 Nov 2002
  • Date Last Updated: 25 Feb 2003
  • Severity Metric: 27.54
  • Document Revision: 8

Feedback

If you have feedback, comments, or additional information about this vulnerability, please send us email.