Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The dns_db_findrdataset function in db.c in named in ISC BIND 9.4 before 9.4.3-P3, 9.5 before 9.5.1-P3, and 9.6 before 9.6.1-P1, when configured as a master server, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an ANY record in the prerequisite section of a crafted dynamic update message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ISC BIND 9 函数dns_db_findrdataset() 拒绝服务漏洞
Vulnerability Description
BIND是一个应用非常广泛的DNS协议的实现,由ISC负责维护,具体的开发由Nominum公司完成 。 BIND服务器在处理畸形格式的动态更新请求时存在漏洞,如果远程攻击者向BIND服务器所发送的动态更新消息中包含有ANY类型记录且服务器上存在这个FQDN的一个或一个以上RRset的话,就可能在dns_db_findrdataset()中触发进程退出,从而造成拒绝服务 。
CVSS Information
N/A
Vulnerability Type
N/A