Receipt of a specially-crafted dynamic update message to a zone for which the server is the master may cause BIND 9 servers to exit. Testing indicates that the attack packet has to be formulated against a zone for which that machine is a master
This vulnerability affects all servers that are masters for one or more zones – it is not limited to those that are configured to allow dynamic updates. Access controls will not provide an effective workaround
Active exploits: An active remote exploit is in wide circulation at this time
Program Impacted: BIND
Versions affected: BIND 9 (all versions)
Summary:BIND denial of service (server crash) caused by receipt of a specific remote dynamic update message.
Last edited by programguy; 07-29-2009 at 11:27 AM.
Thanks for the information, We have already done our update earlier today
██ l Dedigeeks (Twitter) • Shared • Reseller • Cloud VPS • Since 2010
██ l Leading AU Hosting Provider • Multiple locations - around the globe!
██ l cPanel/WHM • R1Soft Backups • 24/7/365 Support • 99.9% Uptime Guarantee
██ l www.yourcompanynamehere.com • Customer Service Rep. • Superior Service Guarantee