Infoblox Information for VU#725188

ISC BIND 9 vulnerable to denial of service via dynamic update request

Status

Affected

Vendor Statement

Infoblox has incorporated the ISC patches to our version of BIND related to CERT VU#725188 (CVE-2009-0696) denial of service vulnerability.
The following Infoblox NIOS releases include the patch as of 7/28/2009:
"       4.2r5-5
"       4.3r2-9
"       4.3r4-4
"       4.3r5-1

These patches are available on the Infoblox Support Site at http://www.infoblox.com/support/.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

Note that the vendor's announcement regarding this vulnerability on the support page listed above has been updated as of 2009-07-29.

If you have feedback, comments, or additional information about this vulnerability, please send us email.