ISC BIND 9 Recursive Queries Remote Denial of Service Vulnerability
BID:50690
Info
ISC BIND 9 Recursive Queries Remote Denial of Service Vulnerability
| Bugtraq ID: | 50690 |
| Class: | Unknown |
| CVE: |
CVE-2011-4313 |
| Remote: | Yes |
| Local: | No |
| Published: | Nov 16 2011 12:00AM |
| Updated: | Apr 13 2015 10:17PM |
| Credit: | The vendor reported this issue. |
| Vulnerable: |
Ubuntu Ubuntu Linux 8.04 LTS sparc Ubuntu Ubuntu Linux 8.04 LTS powerpc Ubuntu Ubuntu Linux 8.04 LTS lpia Ubuntu Ubuntu Linux 8.04 LTS i386 Ubuntu Ubuntu Linux 8.04 LTS amd64 Ubuntu Ubuntu Linux 11.10 i386 Ubuntu Ubuntu Linux 11.10 amd64 Ubuntu Ubuntu Linux 11.04 powerpc Ubuntu Ubuntu Linux 11.04 i386 Ubuntu Ubuntu Linux 11.04 ARM Ubuntu Ubuntu Linux 11.04 amd64 Ubuntu Ubuntu Linux 10.10 powerpc Ubuntu Ubuntu Linux 10.10 i386 Ubuntu Ubuntu Linux 10.10 ARM Ubuntu Ubuntu Linux 10.10 amd64 Ubuntu Ubuntu Linux 10.04 sparc Ubuntu Ubuntu Linux 10.04 powerpc Ubuntu Ubuntu Linux 10.04 i386 Ubuntu Ubuntu Linux 10.04 ARM Ubuntu Ubuntu Linux 10.04 amd64 SuSE SUSE Linux Enterprise Server for VMware 11 SP1 SuSE SUSE Linux Enterprise Server 11 SP1 SuSE SUSE Linux Enterprise Server 10 SP4 SuSE SUSE Linux Enterprise Server 10 SP3 LTSS SuSE SUSE Linux Enterprise SDK 11 SP1 SuSE SUSE Linux Enterprise SDK 10 SP4 SuSE Suse Linux Enterprise Desktop 11 SP1 SuSE Suse Linux Enterprise Desktop 10 SP4 Sun Solaris 9_x86 Sun Solaris 9_sparc Sun Solaris 8_x86 Sun Solaris 8_sparc Sun Solaris 10_x86 Sun Solaris 10_sparc S.u.S.E. SUSE CORE 9 for x86 S.u.S.E. openSUSE 11.4 S.u.S.E. openSUSE 11.3 S.u.S.E. CORE 9 Redhat Enterprise Linux WS 4 Redhat Enterprise Linux Workstation Optional 6 Redhat Enterprise Linux Workstation 6 Redhat Enterprise Linux Server Optional 6 Redhat Enterprise Linux Server 6 Redhat Enterprise Linux HPC Node Optional 6 Redhat Enterprise Linux HPC Node 6 Redhat Enterprise Linux ES 4 Redhat Enterprise Linux Desktop Workstation 5 client Redhat Enterprise Linux Desktop Optional 6 Redhat Enterprise Linux Desktop 6 Redhat Enterprise Linux Desktop 5 client Redhat Enterprise Linux AS 4 Redhat Enterprise Linux Desktop version 4 Redhat Enterprise Linux 5 Server Oracle Solaris 11 Oracle Enterprise Linux 6 Oracle Enterprise Linux 5 Oracle Enterprise Linux 4 NetBSD NetBSD 5.1 NetBSD NetBSD 5.0 NetBSD NetBSD 4.0 Mandriva Linux Mandrake 2011 x86_64 Mandriva Linux Mandrake 2011 Mandriva Linux Mandrake 2010.1 x86_64 Mandriva Linux Mandrake 2010.1 MandrakeSoft Enterprise Server 5 x86_64 MandrakeSoft Enterprise Server 5 ISC Bind 9.8 ISC Bind 9.7.4 ISC Bind 9.7.2 ISC Bind 9.6.3 ISC Bind 9.6.2 ISC BIND 9.6 ISC Bind 9.8.1b1 ISC Bind 9.8.0-P4 ISC Bind 9.8.0-P3 ISC Bind 9.8.0-P2 ISC Bind 9.8.0-P1 ISC Bind 9.8.0 P4 ISC Bind 9.7.4b1 ISC Bind 9.7.4 B1 ISC Bind 9.7.3-P3 ISC Bind 9.7.3-P2 ISC Bind 9.7.3-P1 ISC Bind 9.7.3 Rc1 ISC Bind 9.7.3 P1 ISC Bind 9.7.3 B1 ISC Bind 9.7.3 ISC Bind 9.7.2-P3 ISC Bind 9.7.2-P2 ISC Bind 9.7.2-P1 ISC Bind 9.7.2 Rc1 ISC Bind 9.7.2 P3 ISC Bind 9.7.2 P2 ISC Bind 9.7.2 P1 ISC BIND 9.7.1-P2 ISC Bind 9.7.1 Rc1 ISC Bind 9.7.1 P2 ISC Bind 9.7.1 P1 ISC BIND 9.7.1 P1 ISC BIND 9.7.1 ISC Bind 9.7.1 ISC Bind 9.7.0-P1 ISC Bind 9.7.0 Rc2 ISC Bind 9.7.0 Rc1 ISC Bind 9.7.0 P2 ISC BIND 9.7.0 P2 ISC Bind 9.7.0 P1 ISC Bind 9.7.0 Beta ISC Bind 9.7.0 ISC BIND 9.7.0 ISC Bind 9.6.2-P3 ISC Bind 9.6.2-P2 ISC Bind 9.6.2-P1 ISC BIND 9.6.1-P3 ISC BIND 9.6.1-P2 ISC BIND 9.6.0-P1 ISC Bind 9.6-ESV-R5b1 ISC Bind 9.6-ESV-R4-P3 ISC Bind 9.6-ESV-R4-P1 ISC Bind 9.6-ESV-R4 ISC Bind 9.6-ESV-R3 ISC Bind 9.6-ESV ISC Bind 9.6 -ESV R2 ISC Bind 9.6 -ESV R1 ISC Bind 9.4-ESV-R4-P1 ISC Bind 9.4-ESV-R3 IBM AIX 7.1.1 IBM AIX 7.1 IBM AIX 6.1.7 IBM AIX 6.1.6 IBM AIX 6.1.5 IBM AIX 6.1.4 IBM AIX 6.1.3 IBM AIX 6.1.2 IBM AIX 6.1.1 IBM AIX 5.3.12 IBM AIX 5.3.10 IBM AIX 5.3.9 IBM AIX 5.3.8 IBM AIX 5.3.7 IBM AIX 7.1 IBM AIX 6.2 IBM AIX 6.1 IBM AIX 5.3.12 IBM AIX 5.3.11 HP TCP/IP Services for OpenVMS 5.7 HP TCP/IP Services for OpenVMS 5.6 HP TCP/IP Services for OpenVMS 5.5 HP TCP/IP Services for OpenVMS 5.4 HP OpenVMS TCPIP 5.7 ECO5 HP OpenVMS TCPIP 5.7 HP HP-UX B.11.31 HP HP-UX B.11.23 HP HP-UX B.11.11 FreeBSD FreeBSD 9.0-RC3 FreeBSD FreeBSD 9.0-RC1 FreeBSD FreeBSD 8.2-STABLE FreeBSD FreeBSD 8.2-STABLE FreeBSD FreeBSD 8.2-RELEASE-p2 FreeBSD FreeBSD 8.2-RELEASE-p1 FreeBSD FreeBSD 8.2 - RELEASE -p3 FreeBSD FreeBSD 8.2 FreeBSD FreeBSD 8.1-STABLE FreeBSD FreeBSD 8.1-RELENG FreeBSD FreeBSD 8.1-RELEASE-p5 FreeBSD FreeBSD 8.1-RELEASE-p4 FreeBSD FreeBSD 8.1-RELEASE-p1 FreeBSD FreeBSD 8.1-RELEASE FreeBSD FreeBSD 8.1-PRERELEASE FreeBSD FreeBSD 8.1 FreeBSD FreeBSD 7.4-STABLE FreeBSD FreeBSD 7.4-RELEASE-p2 FreeBSD FreeBSD 7.4 -RELEASE-p3 FreeBSD FreeBSD 7.4 FreeBSD FreeBSD 7.3-STABLE FreeBSD FreeBSD 7.3-RELENG FreeBSD FreeBSD 7.3-RELEASE-p6 FreeBSD FreeBSD 7.3-RELEASE-p3 FreeBSD FreeBSD 7.3-RELEASE-p1 FreeBSD FreeBSD 7.3-RELEASE FreeBSD FreeBSD 7.3 - RELEASE - p7 FreeBSD FreeBSD 7.3 Debian Linux 6.0 sparc Debian Linux 6.0 s/390 Debian Linux 6.0 powerpc Debian Linux 6.0 mips Debian Linux 6.0 ia-64 Debian Linux 6.0 ia-32 Debian Linux 6.0 arm Debian Linux 6.0 amd64 Avaya Proactive Contact 4.1.1 Avaya CMS Server 16.2 Avaya CMS Server 16.1 Avaya CMS Server 16.0 Avaya CMS Server 15.0 AUX Avaya CMS Server 15.0 Avaya Aura Session Manager 6.1.3 Avaya Aura Session Manager 6.1.2 Avaya Aura Session Manager 6.1.1 Avaya Aura Session Manager 6.2 Avaya Aura Session Manager 6.1 SP2 Avaya Aura Session Manager 6.1 Sp1 Avaya Aura Session Manager 6.1 Avaya Aura Session Manager 6.0 SP1 Avaya Aura Session Manager 6.0 Avaya Aura Session Manager 5.2 SP2 Avaya Aura Session Manager 5.2 SP1 Avaya Aura Session Manager 5.2 Avaya Aura Session Manager 1.1 Avaya Aura Session Manager 1.0 Apple Mac OS X Server 10.7.5 Apple Mac OS X Server 10.7.3 Apple Mac OS X Server 10.7.2 Apple Mac OS X Server 10.7.1 Apple Mac OS X Server 10.7 Apple Mac OS X 10.7.4 Apple Mac OS X 10.7.3 Apple Mac OS X 10.7.2 Apple Mac OS X 10.7.1 Apple Mac OS X 10.7 |
| Not Vulnerable: |
ISC Bind 9.8.1-P1 ISC Bind 9.7.4-P1 ISC Bind 9.6-ESV-R5-P1 ISC Bind 9.4-ESV-R5-P1 Avaya Aura Session Manager 6.2.1 Apple Mac OS X 10.8.2 Apple Mac OS X 10.7.5 |
Discussion
ISC BIND 9 Recursive Queries Remote Denial of Service Vulnerability
ISC BIND is prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to cause the 'named' process to crash, denying service to legitimate users.
ISC BIND is prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to cause the 'named' process to crash, denying service to legitimate users.
Exploit / POC
ISC BIND 9 Recursive Queries Remote Denial of Service Vulnerability
The vulnerability is being exploited in-the-wild.
The vulnerability is being exploited in-the-wild.
Solution / Fix
ISC BIND 9 Recursive Queries Remote Denial of Service Vulnerability
Solution:
Updates are available. Please see the references for more information.
Apple Mac OS X 10.7.3
MandrakeSoft Enterprise Server 5
Solution:
Updates are available. Please see the references for more information.
Apple Mac OS X 10.7.3
-
Apple MacOSXUpdCombo10.7.5.dmg
For OS X Lion v10.7 and v10.7.3
http://www.apple.com/support/downloads/
MandrakeSoft Enterprise Server 5
-
Mandriva bind-9.7.4-0.0.P1.1.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva bind-9.7.4-0.1.P1.1.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva bind-9.7.4-0.P1.1.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva bind-devel-9.7.4-0.0.P1.1.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva bind-devel-9.7.4-0.1.P1.1.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva bind-devel-9.7.4-0.P1.1.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva bind-doc-9.7.4-0.0.P1.1.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva bind-doc-9.7.4-0.1.P1.1.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva bind-doc-9.7.4-0.P1.1.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva bind-utils-9.7.4-0.0.P1.1.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva bind-utils-9.7.4-0.1.P1.1.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva bind-utils-9.7.4-0.P1.1.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/
References
ISC BIND 9 Recursive Queries Remote Denial of Service Vulnerability
References:
References:
- CVE-2011-4313 Denial of Service Vulnerability in BIND Domain Name Server (Oracle)
- HPSBOV02774 SSRT100684 rev.1 - HP TCP/IP Services for OpenVMS, BIND 9 Resolver, (HP)
- ISC BIND Homepage (ISC)
- IV11106: CVE-2011-4313 BIND SECURITY VULNERABILITY (IBM)
- NetBSD Security Advisory 2011-009 (NetBSD)
- ASA-2011-428 Denial of Service Vulnerability in BIND Domain Name Server (Oracle (Avaya)
- ASA-2011-430 bind security update (RHSA-2011-1458) (Avaya)
- ASA-2012-005 bind security update (RHSA-2011-1496) (Avaya)
- BIND 9 Resolver crashes after logging an error in query.c (ISC)
- BIND 9 Resolver crashes after logging an error in query.c (ISC)
- HPSBOV03226 rev.1 - HP TCP/IP Services for OpenVMS (HP)
- HPSBUX02729 SSRT100687 rev.1 - HP-UX Running BIND, Remote Denial of Service (DoS (HP)