Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 DNS:BIND-RRSIG-DOS

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 DNS

Keywords

 ISC BIND RRSIG RRsets Denial of Service

Release Date

 2011/08/02

Update Number

 1965

Supported Platforms

 idp-4.0+, isg-3.4+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

DNS: ISC BIND RRSIG RRsets Denial of Service


This signature detects attempts to exploit a known vulnerability in ISC BIND. The vulnerability is caused by an off-by-one error which further leads to an assertion failure when processing very large RRSIG RRsets in a negative response. An remote attacker may exploit this vulnerability through querying a targeted caching resolver for non-existent names in the domain served by the attacker controlled server. Successful exploitation would result an assertion failure in a server resulting in server crash, leading to denial of service condition.

Extended Description

ISC BIND is prone to a remote denial-of-service vulnerability because the software fails to properly handle certain resource record sets (RRsets). An attacker can exploit this issue to cause the application process to crash, denying service to legitimate users.

Affected Products

  • Apple Mac Os X 10.6.5
  • Apple Mac Os X 10.6.6
  • Apple Mac Os X 10.6.7
  • Apple Mac Os X 10.6.8
  • Apple Mac Os X 10.7
  • Apple Mac Os X 10.7.1
  • Apple Mac OS X 10.6
  • Apple Mac OS X 10.6.1
  • Apple Mac OS X 10.6.2
  • Apple Mac OS X 10.6.3
  • Apple Mac OS X 10.6.4
  • Apple Mac OS X 10.6.5
  • Apple Mac Os X Server 10.6.7
  • Apple Mac Os X Server 10.6.8
  • Apple Mac Os X Server 10.7
  • Apple Mac Os X Server 10.7.1
  • Apple Mac OS X Server 10.6
  • Apple Mac OS X Server 10.6.1
  • Apple Mac OS X Server 10.6.2
  • Apple Mac OS X Server 10.6.3
  • Apple Mac OS X Server 10.6.4
  • Apple Mac OS X Server 10.6.5
  • Apple Mac OS X Server 10.6.5
  • Apple Mac OS X Server 10.6.6
  • Debian Linux 5.0
  • Debian Linux 5.0 Alpha
  • Debian Linux 5.0 Amd64
  • Debian Linux 5.0 Arm
  • Debian Linux 5.0 Armel
  • Debian Linux 5.0 Hppa
  • Debian Linux 5.0 Ia-32
  • Debian Linux 5.0 Ia-64
  • Debian Linux 5.0 M68k
  • Debian Linux 5.0 Mips
  • Debian Linux 5.0 Mipsel
  • Debian Linux 5.0 Powerpc
  • Debian Linux 5.0 S/390
  • Debian Linux 5.0 Sparc
  • F5 BIG-IP Application Security Manager 10.0.1
  • F5 BIG-IP Application Security Manager 10.1.0
  • F5 BIG-IP Application Security Manager 10.2.0
  • F5 BIG-IP Application Security Manager 10.2.2
  • F5 BIG-IP Application Security Manager 9.4.3
  • F5 BIG-IP Application Security Manager 9.4.4
  • F5 BIG-IP Application Security Manager 9.4.5
  • F5 BIG-IP Application Security Manager 9.4.6
  • F5 BIG-IP Application Security Manager 9.4.7
  • F5 BIG-IP Application Security Manager 9.4.8
  • F5 BIG-IP Global Traffic Manager (GTM)
  • F5 BIG-IP Protocol Security Manager 10.0.0
  • F5 BIG-IP Protocol Security Manager 10.0.1
  • F5 BIG-IP Protocol Security Manager 10.1.0
  • F5 BIG-IP Protocol Security Manager 9.4.5
  • F5 BIG-IP Protocol Security Manager 9.4.6
  • F5 BIG-IP Protocol Security Manager 9.4.7
  • F5 BIG-IP Protocol Security Manager 9.4.8
  • FreeBSD Freebsd 7.1 -RELEASE-p14
  • FreeBSD Freebsd 7.1-RELENG
  • FreeBSD Freebsd 7.3-RELEASE
  • FreeBSD Freebsd 7.3-RELEASE-p3
  • FreeBSD Freebsd 7.3-RELENG
  • FreeBSD Freebsd 8.0
  • FreeBSD Freebsd 8.0-RC1
  • FreeBSD Freebsd 8.0 -RELEASE-p5
  • FreeBSD Freebsd 8.1-RELEASE-p1
  • FreeBSD Freebsd 8.1-RELENG
  • FreeBSD Freebsd 8.1-STABLE
  • FreeBSD Freebsd 8.2-RELEASE-p1
  • FreeBSD Freebsd 8-RELENG
  • FreeBSD 7.0
  • FreeBSD 7.0 BETA4
  • FreeBSD 7.0 -PRERELEASE
  • FreeBSD 7.0-RELEASE
  • FreeBSD 7.0-RELEASE-P11
  • FreeBSD 7.0-RELEASE-P12
  • FreeBSD 7.0-RELEASE-P3
  • FreeBSD 7.0-RELEASE-P8
  • FreeBSD 7.0 -RELEASE-P9
  • FreeBSD 7.0 -RELENG
  • FreeBSD 7.0-STABLE
  • FreeBSD 7.1
  • FreeBSD 7.1 -PRE-RELEASE
  • FreeBSD 7.1 Rc1
  • FreeBSD 7.1 -RELEASE-P1
  • FreeBSD 7.1 -RELEASE-P2
  • FreeBSD 7.1-RELEASE-P4
  • FreeBSD 7.1-RELEASE-P5
  • FreeBSD 7.1-RELEASE-P6
  • FreeBSD 7.1-STABLE
  • FreeBSD 7.2-PRERELEASE
  • FreeBSD 7.2-RC2
  • FreeBSD 7.2-RELEASE-P1
  • FreeBSD 7.2-RELEASE-P4
  • FreeBSD 7.2-STABLE
  • FreeBSD 7.3-RELEASE-P1
  • FreeBSD 7.3-STABLE
  • FreeBSD 8.0-RELEASE
  • FreeBSD 8.0-STABLE
  • FreeBSD 8.1-PRERELEASE
  • FreeBSD 8.1-RELEASE
  • ISC Bind 9.2.0
  • ISC Bind 9.2.2 P3
  • ISC Bind 9.3.0
  • ISC Bind 9.4.0
  • ISC Bind 9.4.0A6
  • ISC Bind 9.4.2
  • ISC Bind 9.4.3B1
  • ISC Bind 9.4.3B3
  • ISC Bind 9.4.3 Rc1
  • ISC Bind 9.4-ESV-R3
  • ISC Bind 9.5
  • ISC Bind 9.5.0
  • ISC Bind 9.5.0B3
  • ISC Bind 9.5.0-P1
  • ISC Bind 9.5.0 Rc1
  • ISC Bind 9.5.1
  • ISC Bind 9.5.1B2
  • ISC Bind 9.5.1B3
  • ISC Bind 9.5.1 Rc1
  • ISC Bind 9.5.1 Rc2
  • ISC Bind 9.6.0A1
  • ISC Bind 9.6.0B1
  • ISC Bind 9.6.0 Rc1
  • ISC Bind 9.6.0 Rc2
  • ISC Bind 9.6.3
  • ISC Bind 9.6 -ESV R2
  • ISC Bind 9.6-ESV-R3
  • ISC Bind 9.7.2
  • ISC Bind 9.7.2-P1
  • ISC Bind 9.7.2-P2
  • ISC Bind 9.7.2-P3
  • ISC Bind 9.7.3
  • ISC Bind 9.8.0
  • ISC Bind 9.8.0-P1
  • ISC BIND 9.0.0
  • ISC BIND 9.0.1
  • ISC BIND 9.1.0
  • ISC BIND 9.1.1
  • ISC BIND 9.1.2
  • ISC BIND 9.1.3
  • ISC BIND 9.2.0
  • ISC BIND 9.2.1
  • ISC BIND 9.2.2
  • ISC BIND 9.2.3
  • ISC BIND 9.2.4
  • ISC BIND 9.2.5
  • ISC BIND 9.2.6
  • ISC BIND 9.2.7
  • ISC BIND 9.3.0
  • ISC BIND 9.3.1
  • ISC BIND 9.3.2
  • ISC BIND 9.3.3
  • ISC BIND 9.4.0
  • ISC BIND 9.4.0A1
  • ISC BIND 9.4.0A2
  • ISC BIND 9.4.0A3
  • ISC BIND 9.4.0A4
  • ISC BIND 9.4.0A5
  • ISC BIND 9.4.0B1
  • ISC BIND 9.4.0B2
  • ISC BIND 9.4.0B3
  • ISC BIND 9.4.0 B3
  • ISC BIND 9.4.0B4
  • ISC BIND 9.4.0Rc1
  • ISC BIND 9.4.1
  • ISC BIND 9.4.3
  • ISC BIND 9.4.3B2
  • ISC BIND 9.5.0A1
  • ISC BIND 9.5.0A2
  • ISC BIND 9.5.0A3
  • ISC BIND 9.5.0A4
  • ISC BIND 9.5.0A5
  • ISC BIND 9.5.0A6
  • ISC BIND 9.5.0A7
  • ISC BIND 9.5.0B1
  • ISC BIND 9.5.0B2
  • ISC BIND 9.5.0-P2
  • ISC BIND 9.5.0-P2-W1
  • ISC BIND 9.5.0-P2-W2
  • ISC BIND 9.5.1B1
  • ISC BIND 9.6.0
  • ISC BIND 9.6.0-P1
  • ISC BIND 9.7.1
  • ISC BIND 9.7.1 P1
  • ISC BIND 9.7.1-P2
  • Mandriva Corporate Server 4.0
  • Mandriva Corporate Server 4.0.0 X86 64
  • Mandriva Enterprise Server 5
  • Mandriva Enterprise Server 5 X86 64
  • Mandriva Linux Mandrake 2009.0
  • Mandriva Linux Mandrake 2009.0 X86 64
  • Mandriva Linux Mandrake 2010.1
  • Mandriva Linux Mandrake 2010.1 X86 64
  • Red Hat Enterprise Linux 5 Server
  • Red Hat Enterprise Linux Desktop 6
  • Red Hat Enterprise Linux Desktop Optional 6
  • Red Hat Enterprise Linux Desktop Workstation 5 Client
  • Red Hat Enterprise Linux HPC Node 6
  • Red Hat Enterprise Linux HPC Node Optional 6
  • Red Hat Enterprise Linux Server 6
  • Red Hat Enterprise Linux Server Optional 6
  • Red Hat Enterprise Linux Workstation 6
  • Red Hat Enterprise Linux Workstation Optional 6
  • Red Hat Fedora 13
  • Red Hat Fedora 14
  • Red Hat Fedora 15
  • Slackware Linux 10.0.0
  • Slackware Linux 10.1.0
  • Slackware Linux 10.2.0
  • Slackware Linux 11.0
  • Slackware Linux 12.0
  • Slackware Linux 12.1
  • Slackware Linux 12.2
  • Slackware Linux 13.0
  • Slackware Linux 13.0 X86 64
  • Slackware Linux 13.1
  • Slackware Linux 13.1 X86 64
  • Slackware Linux 13.37
  • Slackware Linux 13.37 x86_64
  • Slackware Linux 8.1.0
  • Slackware Linux 9.0.0
  • Slackware Linux 9.1.0
  • Slackware Linux -Current
  • Slackware Linux X86 64 -Current
  • Sun Solaris 10 Sparc
  • Sun Solaris 10 X86
  • Sun Solaris 11 Express
  • Sun Solaris 9 Sparc
  • Sun Solaris 9 X86
  • SuSE SUSE Linux Enterprise Desktop 10 SP4
  • SuSE SUSE Linux Enterprise SDK 10 SP4
  • SuSE SUSE Linux Enterprise Server 10 SP4
  • Ubuntu Ubuntu Linux 10.04 Amd64
  • Ubuntu Ubuntu Linux 10.04 ARM
  • Ubuntu Ubuntu Linux 10.04 I386
  • Ubuntu Ubuntu Linux 10.04 Powerpc
  • Ubuntu Ubuntu Linux 10.04 Sparc
  • Ubuntu Ubuntu Linux 10.10 amd64
  • Ubuntu Ubuntu Linux 10.10 ARM
  • Ubuntu Ubuntu Linux 10.10 i386
  • Ubuntu Ubuntu Linux 10.10 powerpc
  • Ubuntu Ubuntu Linux 11.04 amd64
  • Ubuntu Ubuntu Linux 11.04 ARM
  • Ubuntu Ubuntu Linux 11.04 i386
  • Ubuntu Ubuntu Linux 11.04 powerpc
  • Ubuntu Ubuntu Linux 8.04 LTS Amd64
  • Ubuntu Ubuntu Linux 8.04 LTS I386
  • Ubuntu Ubuntu Linux 8.04 LTS Lpia
  • Ubuntu Ubuntu Linux 8.04 LTS Powerpc
  • Ubuntu Ubuntu Linux 8.04 LTS Sparc
  • Xerox FreeFlow Print Server (FFPS) 73.A3.31
  • Xerox FreeFlow Print Server (FFPS) 73.B0.73

References

  • BugTraq: 48007
  • CVE: CVE-2011-1910

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out