Organizations worldwide began reporting their DNS servers that relied on BIND keep crashing while the nameservers were performing recursive queries. The Internet System Consortium (ICS) claims that multiple versions were affected by an unidentified network event. Sophos names it a “denial of service vulnerabil... |
17 November 2011
07:47 GMT |
 |
|
The Internet Systems Consortium (ISC) has released security updates for the BIND DNS daemon in order to address two serious vulnerabilities that can crash servers."A defect in the affected BIND 9 versions allows an attacker to remotely cause the "named" process to exit using a specially crafted packet. This defect af... |
5 July 2011
14:20 GMT |
|
|
The Internet Systems Consortium (ISC) has released security updates for the BIND DNS server software in order to address a serious denial of service vulnerability.The vulnerability, identified as CVE-2011-1910, could be exploited by attackers to crash a large number of BIND 9 DNS resolvers by sending specially crafte... |
27 May 2011
13:45 GMT |
|
|
BIND maintainer Internet Systems Consortium (ISC) has released an update which fixes a high risk, remotely exploitable, denial-of-service vulnerability in the DNS server software.Identified as CVE-2011-0414, the flaw affects BIND versions 9.7.1 and 9.7.2, and was discovered by Neustar, the company responsible fo... |
24 February 2011
00:46 GMT |
|
|
According to the 2008 DNS Survey, commissioned by network services appliances vendor Infoblox, while some improvements are noticeable, compared to 2007, millions of publicly available DNS servers still allow open recursion, which makes them vulnerable to DoS and cache poisoning attacks.The tests were carried out by t... |
11 November 2008
06:12 GMT |
|
|
Yesterday, Russian physicist Evgeniy Polyakov posted on his blog a proof-of-concept exploit that is able to insert poisoned DNS entries into a patched server. His setup consisted of two desktop computers and a GigE connection. The successful exploit took place in a bit under 10 hours, which could mean that less time ... |
9 August 2008
05:03 GMT |
|
|
If you have ever registered a domain, you might have noticed that you were asked to enter the IP address of two name servers. Those name servers are basically two BIND(9) daemons, running as master and slave, on two different machines. This is a commonly used setup for hosting your own domain; in case one breaks, the... |
16 March 2007
06:42 GMT |
|
|
Find us on Google+
