Oval Definition:
oval:org.mitre.oval:def:2094
Revision Date
:
2005-03-09
Version
:
16
Title
:
BIND DoS via SIG RR Elements
Description
:
BIND 8.x through 8.3.3 allows remote attackers to cause a denial of service (crash) via SIG RR elements with invalid expiry times, which are removed from the internal BIND database and later cause a null dereference.
Family
:
unix
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2002-1221
Platform(s)
:
Sun Solaris 7
Product(s)
:
Bind
Definition Synopsis
Software section
Solaris 7,8,or 9 installed
Solaris 8 Installed
OR
Solaris 7 Installed
OR
Solaris 9 Installed
AND
Internet Domain Name Server (BIND, SUNWinamd) installed
AND
NOT
Patch 106938-07 or later installed
AND
NOT
Patch 109326-10 or later installed
AND
NOT
Patch 112970-03 or later installed
AND
Configuration section
in.named running
BACK