ISC BIND 9 DNS Resource Records Handling Remote Denial of Service Vulnerability
BID:53772
Info
ISC BIND 9 DNS Resource Records Handling Remote Denial of Service Vulnerability
| Bugtraq ID: | 53772 |
| Class: | Unknown |
| CVE: |
CVE-2012-1667 |
| Remote: | Yes |
| Local: | No |
| Published: | Jun 04 2012 12:00AM |
| Updated: | Feb 11 2016 07:47AM |
| Credit: | Dan Luther of Level3 Communications. |
| Vulnerable: |
VMWare ESX Server 4.1 VMWare ESX Server 4.0 Ubuntu Ubuntu Linux 8.04 LTS sparc Ubuntu Ubuntu Linux 8.04 LTS powerpc Ubuntu Ubuntu Linux 8.04 LTS lpia Ubuntu Ubuntu Linux 8.04 LTS i386 Ubuntu Ubuntu Linux 8.04 LTS amd64 Ubuntu Ubuntu Linux 12.04 LTS i386 Ubuntu Ubuntu Linux 12.04 LTS amd64 Ubuntu Ubuntu Linux 11.10 i386 Ubuntu Ubuntu Linux 11.10 amd64 Ubuntu Ubuntu Linux 11.04 powerpc Ubuntu Ubuntu Linux 11.04 i386 Ubuntu Ubuntu Linux 11.04 ARM Ubuntu Ubuntu Linux 11.04 amd64 Ubuntu Ubuntu Linux 10.04 sparc Ubuntu Ubuntu Linux 10.04 powerpc Ubuntu Ubuntu Linux 10.04 i386 Ubuntu Ubuntu Linux 10.04 ARM Ubuntu Ubuntu Linux 10.04 amd64 Turbolinux Client 2008 Turbolinux Appliance Server 3.0 x64 Turbolinux Appliance Server 3.0 Turbolinux Appliance Server 2.0 SuSE SUSE Linux Enterprise Server for VMware 11 SP2 SuSE SUSE Linux Enterprise Server for VMware 11 SP1 SuSE SUSE Linux Enterprise Server 11 SP2 SuSE SUSE Linux Enterprise Server 11 SP1 SuSE SUSE Linux Enterprise Server 10 SP3 LTSS SuSE SUSE Linux Enterprise Server 10 SP2 SuSE SUSE Linux Enterprise SDK 11 SP2 SuSE SUSE Linux Enterprise SDK 11 SP1 SuSE SUSE Linux Enterprise Desktop 11 SP2 SuSE SUSE Linux Enterprise Desktop 11 SP1 SuSE openSUSE 12.1 SuSE openSUSE 11.4 Slackware Linux 10.2 Slackware Linux 10.1 Slackware Linux 10.0 Slackware Linux 9.1 Slackware Linux 9.0 Slackware Linux 8.1 Slackware Linux x86_64 -current Slackware Linux 13.37 x86_64 Slackware Linux 13.37 Slackware Linux 13.1 x86_64 Slackware Linux 13.1 Slackware Linux 13.0 x86_64 Slackware Linux 13.0 Slackware Linux 12.2 Slackware Linux 12.1 Slackware Linux 12.0 Slackware Linux 11.0 Slackware Linux -current S.u.S.E. SUSE CORE 9 for x86 S.u.S.E. CORE 9 RedHat Enterprise Linux ES 4 RedHat Enterprise Linux Desktop Workstation 5 client Red Hat Enterprise Linux Workstation Optional 6 Red Hat Enterprise Linux Workstation 6 Red Hat Enterprise Linux Server Optional 6 Red Hat Enterprise Linux Server 6 Red Hat Enterprise Linux HPC Node Optional 6 Red Hat Enterprise Linux HPC Node 6 Red Hat Enterprise Linux Desktop Optional 6 Red Hat Enterprise Linux Desktop 6 Red Hat Enterprise Linux Desktop 5 client Red Hat Enterprise Linux AS 4 Red Hat Enterprise Linux 5 Server Oracle Enterprise Linux 5 Oracle Enterprise Linux 4 Mandriva Linux Mandrake 2011 x86_64 Mandriva Linux Mandrake 2011 Mandriva Linux Mandrake 2010.1 x86_64 Mandriva Linux Mandrake 2010.1 MandrakeSoft Enterprise Server 5 x86_64 MandrakeSoft Enterprise Server 5 ISC BIND 9.6 ISC BIND 9.5.1 P3 ISC BIND 9.5.1 P1 ISC BIND 9.5 a2 ISC BIND 9.5 a1 ISC BIND 9.4.3 P3 ISC BIND 9.4.3 ISC BIND 9.4.1 -P1 ISC BIND 9.4.1 ISC BIND 9.4 rc2 ISC BIND 9.4 rc1 ISC BIND 9.4 b4 ISC BIND 9.4 b3 ISC BIND 9.4 b3 ISC BIND 9.4 b2 ISC BIND 9.4 b1 ISC BIND 9.4 a6 ISC BIND 9.4 a5 ISC BIND 9.4 a4 ISC BIND 9.4 a3 ISC BIND 9.4 a2 ISC BIND 9.4 a1 ISC BIND 9.4 ISC BIND 9.3.6 P1 ISC BIND 9.3.6 ISC BIND 9.3.5 ISC BIND 9.3.4 ISC BIND 9.3.3 rc3 ISC BIND 9.3.3 rc2 ISC BIND 9.3.3 rc1 ISC BIND 9.3.3 b1 ISC BIND 9.3.3 b ISC BIND 9.3.3 ISC BIND 9.3.2 -P2 ISC BIND 9.3.2 -P1 ISC BIND 9.3.2 ISC BIND 9.3.1 ISC BIND 9.3 ISC BIND 9.2.8 ISC BIND 9.2.7 rc3 ISC BIND 9.2.7 rc2 ISC BIND 9.2.7 rc1 ISC BIND 9.2.7 b1 ISC BIND 9.2.7 ISC BIND 9.2.6 -P2 ISC BIND 9.2.6 -P1 ISC BIND 9.2.6 ISC BIND 9.2.5 ISC BIND 9.2.4 ISC BIND 9.2.3 ISC BIND 9.2.2 ISC BIND 9.2.1 ISC BIND 9.2 ISC BIND 9.1.3 ISC BIND 9.1.2 ISC BIND 9.1.1 ISC BIND 9.1 ISC BIND 9.0.1 ISC BIND 9.0 ISC BIND 9.7.1-P2 ISC BIND 9.7.1 P1 ISC BIND 9.7.1 ISC BIND 9.7.0 P2 ISC BIND 9.7.0 ISC BIND 9.6.1-P3 ISC BIND 9.6.1-P2 ISC BIND 9.6.0-P1 ISC BIND 9.5.2-P2 ISC BIND 9.5.2-P1 ISC BIND 9.5.1b1 ISC BIND 9.5.0b2 ISC BIND 9.5.0b1 ISC BIND 9.5.0a7 ISC BIND 9.5.0a6 ISC BIND 9.5.0a5 ISC BIND 9.5.0a4 ISC BIND 9.5.0a3 ISC BIND 9.5.0-P2-W2 ISC BIND 9.5.0-P2-W1 ISC BIND 9.5.0-P2 ISC BIND 9.4.3b2 ISC BIND 9.4.3-P5 ISC BIND 9.4.3-P4 ISC BIND 9.4.3-P1 ISC BIND 9.4.2-P2-W2 ISC BIND 9.4.2-P2-W1 ISC BIND 9.4.2-P2 ISC BIND 9.3.5-P2-W2 ISC BIND 9.3.5-P2-W1 ISC BIND 9.3.5-P2 Infoblox NIOS 5.1r5-0 Infoblox NIOS 4.3r8-5 Infoblox NIOS 4.3r7-0 HP HP-UX B.11.31 HP HP-UX B.11.23 HP HP-UX B.11.11 HP HP-UX B.11.11 Gentoo Linux FreeBSD Freebsd 9.0-STABLE FreeBSD Freebsd 9.0-RELEASE FreeBSD Freebsd 9.0-RC3 FreeBSD Freebsd 9.0-RC1 FreeBSD Freebsd 8.3-STABLE FreeBSD Freebsd 8.2-STABLE FreeBSD Freebsd 8.2-STABLE FreeBSD Freebsd 8.2-RELEASE-p2 FreeBSD Freebsd 8.2-RELEASE-p1 FreeBSD Freebsd 8.2 - RELEASE -p3 FreeBSD Freebsd 8.2 FreeBSD Freebsd 8.1-RELEASE-p5 FreeBSD Freebsd 8.1-RELEASE-p4 FreeBSD FreeBSD 8.1-RELEASE FreeBSD FreeBSD 8.1-PRERELEASE FreeBSD Freebsd 8.1 FreeBSD Freebsd 7.4-STABLE FreeBSD Freebsd 7.4-RELEASE-p2 FreeBSD Freebsd 7.4 -RELEASE-p3 FreeBSD Freebsd 7.4 Debian Linux 6.0 sparc Debian Linux 6.0 s/390 Debian Linux 6.0 powerpc Debian Linux 6.0 mips Debian Linux 6.0 ia-64 Debian Linux 6.0 ia-32 Debian Linux 6.0 arm Debian Linux 6.0 amd64 Avaya Voice Portal 5.1.2 Avaya Voice Portal 5.1.1 Avaya Voice Portal 5.1 SP1 Avaya Voice Portal 5.1 Avaya Voice Portal 5.0 SP2 Avaya Voice Portal 5.0 SP1 Avaya Voice Portal 5.0 Avaya Proactive Contact 5.0 Avaya IQ 5.2 Avaya IQ 5.1.1 Avaya IQ 5.1 Avaya IQ 5 Avaya IP Office Application Server 8.1 Avaya IP Office Application Server 8.0 Avaya IP Office Application Server 7.0 Avaya IP Office Application Server 6.1 Avaya IP Office Application Server 6.0 Avaya Communication Server 1000M Signaling Server 7.5 Avaya Communication Server 1000M Signaling Server 7.0 Avaya Communication Server 1000M Signaling Server 6.0 Avaya Communication Server 1000M 7.5 Avaya Communication Server 1000M 7.0 Avaya Communication Server 1000M 6.0 Avaya Communication Server 1000E Signaling Server 7.5 Avaya Communication Server 1000E Signaling Server 7.0 Avaya Communication Server 1000E Signaling Server 6.0 Avaya Communication Server 1000E 7.5 Avaya Communication Server 1000E 7.0 Avaya Communication Server 1000E 6.0 Avaya Aura System Platform 6.0.2 Avaya Aura System Platform 6.0.1 Avaya Aura System Platform 6.0 SP3 Avaya Aura System Platform 6.0 SP2 Avaya Aura System Platform 6.0 Avaya Aura System Platform 1.1 Avaya Aura System Manager 6.2 Avaya Aura System Manager 6.1.3 Avaya Aura System Manager 6.1.2 Avaya Aura System Manager 6.1.1 Avaya Aura System Manager 6.1 SP2 Avaya Aura System Manager 6.1 Sp1 Avaya Aura System Manager 6.1 Avaya Aura System Manager 6.0 SP1 Avaya Aura System Manager 6.0 Avaya Aura Session Manager 6.2.1 Avaya Aura Session Manager 6.1.3 Avaya Aura Session Manager 6.1.2 Avaya Aura Session Manager 6.1.1 Avaya Aura Session Manager 6.2 Avaya Aura Session Manager 6.1 SP2 Avaya Aura Session Manager 6.1 Sp1 Avaya Aura Session Manager 6.1 Avaya Aura Session Manager 6.0 SP1 Avaya Aura Session Manager 6.0 Avaya Aura Session Manager 5.2 SP2 Avaya Aura Session Manager 5.2 SP1 Avaya Aura Session Manager 5.2 Avaya Aura Session Manager 1.1 Avaya Aura Session Manager 1.0 Avaya Aura Presence Services 6.1.1 Avaya Aura Presence Services 6.1 Avaya Aura Presence Services 6.0 Avaya Aura Messaging 6.1 Avaya Aura Messaging 6.0.1 Avaya Aura Messaging 6.0 Avaya Aura Experience Portal 6.0 Avaya Aura Conferencing 6.0 Standard Avaya Aura Conferencing 6.0 SP1 Standard Avaya Aura Communication Manager 6.0.1 Avaya Aura Communication Manager 6.0 Avaya Aura Application Enablement Services 5.2.1 Avaya Aura Application Enablement Services 6.1.1 Avaya Aura Application Enablement Services 6.1 Avaya Aura Application Enablement Services 5.2.3 Avaya Aura Application Enablement Services 5.2.2 Avaya Aura Application Enablement Services 5.2 Apple Mac Os X Server 10.7.3 Apple Mac Os X Server 10.7.2 Apple Mac Os X Server 10.7.1 Apple Mac Os X Server 10.7 Apple Mac Os X Server 10.6.8 Apple Mac Os X 10.7.4 Apple Mac Os X 10.7.3 Apple Mac Os X 10.7.2 Apple Mac Os X 10.7.1 |
| Not Vulnerable: | |
Discussion
ISC BIND 9 DNS Resource Records Handling Remote Denial of Service Vulnerability
ISC BIND is prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to cause the 'named' process to crash, denying service to legitimate users. This issue may also be exploited to disclose certain memory information to clients.
ISC BIND is prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to cause the 'named' process to crash, denying service to legitimate users. This issue may also be exploited to disclose certain memory information to clients.
References
ISC BIND 9 DNS Resource Records Handling Remote Denial of Service Vulnerability
References:
References:
- ISC BIND Homepage (ISC)
- ISC: Handling of zero length rdata can cause named to terminate unexpectedly (CV (Infoblox)
- SOL13660: BIND vulnerability CVE-2012-1667 (F5 Networks)
- HPSBUX02795 SSRT100878 rev.1 - HP-UX Running BIND, Remote Denial of Service (Do (HP)
- bind security update (Avaya)
- Handling of zero length rdata can cause named to terminate unexpectedly (ISC)
- HPSBOV03540 rev.1 - HPE OpenVMS TCPIP Bind Services and OpenVMS TCPIP IPC Servic (HP)
- HPSBUX02823 SSRT100976 rev.1 - HP-UX Running BIND, Remote Denial of Service (DoS (HP)
- Turbolinux Security Advisory TLSA-2012-15 (Turbolinux)
- VMSA-2012-0016 : VMware security updates for vSphere API and ESX Service Console (VMware)
- Vulnerability Note VU#381699 ISC BIND 9 zero length rdata named vulnerability (US-CERT)