×
The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.
MSS (Managed System Services) ran a scan on our system. It reported
this vulnerability.
CVE-2012-1667: Handling of zero length rdata can cause named to
terminate unexpectedly (dns-bind-cve-2012-1667)
ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1, 9.9.x before 9.9.1-
P1, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P1 does not properly
handle resource records with a zero-length RDATA section, which allows
remote DNS servers to cause a denial of service (daemon crash or data
corruption) or obtain sensitive information from process memory via a
crafted record.
Affected Nodes:
<deleted from this email>
Additional Information:
Running DNS serviceProduct BIND exists -- BIND 9.7.4-P1.V7R1M0Vulnerable
version of product BIND found -- BIND 9.7.4-P1.V7R1M0
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-1667
Rob Berendt
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact
[javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.
midrange.com
