SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information


 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Vulnerability Note VU#938617

BIND 9.3.0 vulnerable to denial of service in validator code

Overview

A vulnerability in the BIND name server could allow a remote attacker to cause a denial of service against an affected system.

I. Description

The Berkeley Internet Name Domain (BIND) is a popular Domain Name System (DNS) implementation from Internet Systems Consortium (ISC). BIND supports the DNS Security Extensions (DNSSEC), including the NextSECure (NSEC) RDATA Format defined by RFC3845. An incorrect assumption in the validator function authvalidated()can result in an internal consistancy test failing and named exiting. An attacker with the ability to craft specific DNS packets could exploit this vulnerability to cause a denial of service. This vulnerability only affects BIND version 9.3.0.

II. Impact

A remote attacker may be able to cause the name server daemon to exit prematurely, thereby causing a denial of service for DNS operations.

III. Solution

Apply a patch from the vendor

Patches have been released in response to this issue. Please see the Systems Affected section of this document.

Upgrade

Users who compile their own versions of BIND from the original ISC source code are encouraged to upgrade to BIND version 9.3.1, which includes a patch for this issue.

Workarounds

ISC recommends that users that are unable to apply the patch ensure that dnssec validation is turned off (it is off by default) at the options/view level. The relevant BIND configuration directive is:

    dnssec-enable no;

Systems Affected
VendorStatusDate NotifiedDate Updated
AdnsUnknown17-Jan-2005
Apple Computer Inc.Not Vulnerable18-Mar-2005
BlueCat NetworksUnknown17-Jan-2005
Check PointNot Vulnerable24-Jan-2005
ConectivaUnknown17-Jan-2005
Cray Inc.Unknown17-Jan-2005
DebianNot Vulnerable25-Jan-2005
EMC CorporationUnknown17-Jan-2005
EngardeUnknown17-Jan-2005
F5 NetworksUnknown17-Jan-2005
FreeBSDVulnerable21-Jun-2005
FujitsuUnknown17-Jan-2005
GNU glibcUnknown17-Jan-2005
Hewlett-Packard CompanyUnknown17-Jan-2005
HitachiNot Vulnerable20-Jan-2005
IBMNot Vulnerable24-Jan-2005
IBM-zSeriesUnknown17-Jan-2005
IBM eServerUnknown1-Feb-2005
ImmunixUnknown17-Jan-2005
InfoBloxNot Vulnerable18-Mar-2005
Ingrian NetworksUnknown17-Jan-2005
ISCVulnerable25-Jan-2005
Juniper NetworksNot Vulnerable24-Jan-2005
Lucent TechnologiesUnknown17-Jan-2005
MandrakeSoftVulnerable31-Jan-2005
Men&MiceUnknown17-Jan-2005
MetaSolv Software Inc.Unknown17-Jan-2005
Microsoft CorporationUnknown17-Jan-2005
MontaVista SoftwareUnknown17-Jan-2005
NEC CorporationNot Vulnerable18-Mar-2005
NetBSDUnknown17-Jan-2005
NokiaUnknown17-Jan-2005
Nortel NetworksUnknown17-Jan-2005
NovellUnknown17-Jan-2005
OpenBSDUnknown17-Jan-2005
Openwall GNU/*/LinuxUnknown17-Jan-2005
Red Hat Inc.Not Vulnerable18-Jan-2005
SCO-LINUXUnknown17-Jan-2005
SCO-UNIXUnknown17-Jan-2005
SequentUnknown17-Jan-2005
SGIUnknown17-Jan-2005
Sony CorporationUnknown17-Jan-2005
Sun Microsystems Inc.Not Vulnerable24-Jan-2005
SuSE Inc.Unknown17-Jan-2005
Trustix Secure LinuxVulnerable16-Feb-2005
TurboLinuxUnknown17-Jan-2005
UnisysUnknown17-Jan-2005
Wind River Systems Inc.Unknown17-Jan-2005

References


http://www.isc.org/sw/bind/bind-security.php
http://www.niscc.gov.uk/niscc/docs/al-20050125-00060.html?lang=en

Credit

Thanks to Joao Damas of the Internet Systems Consortium for reporting this vulnerability.

This document was written by Chad Dougherty based on information provided by ISC.

Other Information

Date Public:2005-01-25
Date First Published:2005-01-25
Date Last Updated:2005-06-21
CERT Advisory: 
CVE-ID(s):CAN-2005-0034
NVD-ID(s):CAN-2005-0034
US-CERT Technical Alerts: 
Metric:1.91
Document Revision:20

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Copyright 2005 Carnegie Mellon University
Disclaimers and copyright information
Get Adobe Reader Get Adobe Reader