DNS: ISC BIND DNSSEC Validation Multiple RRsets Denial of Service
This signature detects attempts to exploit a known vulnerability against ISC BIND. A successful attack can lead to a denial-of-service condition.
Extended Description
ISC BIND is prone to a remote denial-of-service vulnerability because the application fails to properly handle malformed DNSSEC validation requests. Successfully exploiting this issue allows remote attackers to crash affected DNS servers, denying further service to legitimate users.
Affected Products
Vmware esx_server
Short Name
DNS:EXPLOIT:BIND-MULT-RRSET
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
DNS
Keywords
BIND CVE-2007-0494 DNSSEC Denial ISC Multiple RRsets Service Validation bid:22231 of
Release Date
09/30/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3339
False Positive
Unknown
Vendors
Red_hat
Sgi
Suse
Apple
Gentoo
Sun
Hp
Turbolinux
Avaya
Openpkg
Freebsd
Mandriva
Trustix
Rpath
Slackware
Ubuntu
Isc
Netbsd
Debian
Vmware
Ibm
CVSS Score
4.3