CVE-2010-3613
CVE-2010-3613
named in ISC BIND 9.6.2 before 9.6.2-P3, 9.6-ESV before 9.6-ESV-R3, and 9.7.x before 9.7.2-P3 does not properly handle the combination of signed negative responses and corresponding RRSIG records in the cache, which allows remote attackers to cause a denial of service (daemon crash) via a query for cached data.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2011-001.txt.aschttp://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-December/051910.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-December/051963.htmlhttp://lists.vmware.com/pipermail/security-announce/2011/000126.htmlhttp://marc.info/?l=bugtraq&m=130270720601677&w=2http://secunia.com/advisories/42374http://secunia.com/advisories/42459http://secunia.com/advisories/42522http://secunia.com/advisories/42671http://secunia.com/advisories/42707http://secunia.com/advisories/43141