Domain Name System (DNS) Protocol Denial Of Service Vulnerability
FrSIRT Advisory : FrSIRT/ADV-2005-0610
CVE Reference : CAN-2005-0036 - CAN-2005-0037 - CAN-2005-0038
Rated as : Moderate Risk
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2005-05-24* Technical Description *
A vulnerability was identified in the Domain Name System (DNS) protocol, which may be exploited by remote attackers to cause a denial of service. This flaw resides in the recursion process used by some DNS implementations to decompress compressed DNS messages (RFC1035), which may be exploited by attackers to cause a denial of service by sending a specially crafted DNS packet to a vulnerable server.
* Affected Products *
Domain Name System (DNS) protocol* Solution *
Many vendors include support for this protocol in their products. Customers are advised to contact vendors in order to obtain more information about affected products and fixes.* References *
http://www.frsirt.com/english/advisories/2005/0610
http://www.niscc.gov.uk/niscc/docs/al-20050524-00433.html
* Credits *
Vulnerability reported by Steve Beaty
* ChangeLog *
2005-05-24 : Original Advisory
posted by Fergie @ 5/24/2005 06:50:00 AM
0 Comments:
Post a Comment
<< Home