ISC.BIND.InverseQuery.Overflow

description-logoDescription

This indicates an attempt to exploit a buffer overflow vulnerability in Bind.
An attacker can probe a target DNS server with a specific inverse query. If the DNS server is vulnerable, this may result in information disclosure. With this information, the attacker can gain access to the DNS server with the privileges of the DNS daemon, "named" (potentially root).

affected-products-logoAffected Products

BIND Versions 4 and Versions 8 through 8.2 are vulnerable to the attack.

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Update to BIND versions greater than 8.2.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)