DNS: ISC BIND buffer.c REQUIRE Assertion Failure Denial of Service

This signature detects attempts to exploit a known vulnerability against BIND DNS package bind9. A successful exploit can lead to denial of service.

Extended Description

buffer.c in named in ISC BIND 9.10.x before 9.10.3-P3, when debug logging is enabled, allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit, or daemon crash) or possibly have unspecified other impact via (1) OPT data or (2) an ECS option.

Affected Products

Isc bind

References

CVE: CVE-2015-8705

Short Name
DNS:ISC-BIND-PACKAGE-DOS
Severity
Major
Recommended
False
Recommended Action
None
Category
DNS
Keywords
Assertion BIND CVE-2015-8705 Denial Failure ISC REQUIRE Service buffer.c of
Release Date
02/08/2016
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3819
False Positive
Frequently
Vendors

Isc

CVSS Score

6.6

Found a potential security threat?