DNS: ISC BIND query_addsoa Denial of Service
This signature detects attempts to exploit a known vulnerability against ISC BIND. A successful attack can lead to arbitrary code execution.
Extended Description
ISC BIND is prone to a denial-of-service vulnerability because it fails to handle certain sequences of malicious queries. NOTE: Only applications configured with the 'recursion' directive/attribute enabled are vulnerable to this issue. An attacker can exploit this issue to cause the application to exit, denying service to legitimate users. ISC BIND 9.40, 9.5.0a1, 9.5.0a2, and 9.5.0a3 are vulnerable.
Affected Products
Isc bind
Short Name
DNS:EXPLOIT:BIND-ADDSOA
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
DNS
Keywords
BIND CVE-2007-2241 Denial ISC Service bid:23738 of query_addsoa
Release Date
10/07/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3339
False Positive
Unknown
Vendors
Mandriva
Openpkg
Isc
Red_hat
CVSS Score
7.1