Signature Detail

Short Name	DNS:BIND-DBC-ASSERT-DOS
Severity	Critical
Recommended	Yes
Recommended Action	Drop
Category	DNS
Keywords	ISC BIND db.c Assertion Failure Denial of Service
Release Date	2016/01/19
Update Number	2621
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

DNS: ISC BIND db.c Assertion Failure Denial of Service

This signature detects attempts to exploit a known vulnerability against BIND DNS Service. The vulnerability is due to improper parsing of incoming responses, allowing malformed records to be accepted by BIND when they should not be accepted. A successful attack can result in a denial-of-service condition.

References

CVE: CVE-2015-8000
URL: https://kb.isc.org/article/AA-01317

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

DNS: ISC BIND db.c Assertion Failure Denial of Service

References