Oval Definition:
oval:org.mitre.oval:def:2539
Revision Date
:
2005-03-09
Version
:
16
Title
:
BIND SIG Resource Records Buffer Overflow
Description
:
Buffer overflow in named in BIND 4 versions 4.9.10 and earlier, and 8 versions 8.3.3 and earlier, allows remote attackers to execute arbitrary code via a certain DNS server response containing SIG resource records (RR).
Family
:
unix
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2002-1219
Platform(s)
:
Sun Solaris 7
Product(s)
:
Bind
Definition Synopsis
Software section
Solaris 7,8,or 9 installed
Solaris 8 Installed
OR
Solaris 7 Installed
OR
Solaris 9 Installed
AND
Internet Domain Name Server (BIND, SUNWinamd) installed
AND
NOT
Patch 106938-07 or later installed
AND
NOT
Patch 109326-10 or later installed
AND
NOT
Patch 112970-03 or later installed
AND
Configuration section
in.named running
BACK