Buffer overflow and DoS i BIND
From: Jørgensen, Bjørn Anders (jorgensen@NETTSPESIALISTEN.NO)Date: 07/03/02
- Next in thread: Steven M. Christey: "Re: Buffer overflow and DoS i BIND"
- Reply: Steven M. Christey: "Re: Buffer overflow and DoS i BIND"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 3 Jul 2002 10:15:19 +0200 From: "Jørgensen, Bjørn Anders" <jorgensen@NETTSPESIALISTEN.NO> To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
For those running BIND on Windows:
http://www.cert.org/advisories/CA-2002-19.html
---------------------------------------------------------------
All versions of BIND 4 from 4.8.1 prior to BIND 4.9.9 are vulnerable.
All versions of BIND 8 prior to BIND 8.2.6 are vulnerable.
All versions of BIND 8.3.x prior to BIND 8.3.3 are vulnerable.
BIND versions BIND 9.2.0 and BIND 9.2.1 are vulnerable.
The status of BIND 4.8 is unknown, assume that it is vulnerable.
BIND versions BIND 9.0.x and BIND 9.1.x are not vulnerable.
------------------------------------------------------------------
(BTW: Sendmail is also affected)
Funny thing: There's also found a DoS bug in BIND 9 earlier.
http://www.cert.org/advisories/CA-2002-14.html
Make sure to patch up vulnerable systems.
- Anders
- Next in thread: Steven M. Christey: "Re: Buffer overflow and DoS i BIND"
- Reply: Steven M. Christey: "Re: Buffer overflow and DoS i BIND"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
