GEN:SID | 1:2921 |
Message | DNS UDP inverse query |
Summary | This event is generated when an inverse query attempt is made using UDP.
|
Impact | Possible execution of arbitrary code.
|
Detailed Information | Bind 8 contains a programming error that may present an attacker with the opportunity to execute code of their choosing on an affected server.
The error occurs in the handling of malformed transactions. When using UDP this can result in the attacker causing a stack overflow in named.
|
Affected Systems | Bind 8.
|
Attack Scenarios | An attacker needs to send a specially crafted and malformed query to an affected server.
|
Ease of Attack | Moderate.
|
Corrective Action | Upgrade to the latest non-affected version of the software.
Apply the appropriate vendor supplied patches.
|
Additional References | |
Rule References | bugtraq: 2302
cve: 2001-0010
|