All the latest UK technology news, reviews and analysis
|
|
|
24 Feb 2011
A warning has been issued about a vulnerability in BIND, one of the most popular (DNS) server systems on the internet.
The Internet Storm Center (ISC) is warning system administrators about the flaw which can lock up BIND by use of a special query. BIND 9.7.1 or 9.7.2 are vulnerable to the flaw and admins have been urged to upgrade to BIND 9.7.3.
"Depending on your performance requirements, a work-around may be available. ISC was not able to reproduce this defect in 9.7.2 using -n1, which causes named to use only one worker thread, thus avoiding the deadlock," it advised.
"If your server is powerful enough to serve your data with a single processor, this option may be fast to implement until you have time to perform an upgrade."
Earlier versions are not vulnerable. If you run BIND 9.6.x, 9.6-ESV-Rx, or 9.4-ESV-R4, you do not need to upgrade.
ISC said that the flaw had been identified by Neustar and no exploits have been seen in the wild so far. Security researchers Secunia rate the flaw 'moderately critical.'
Latest stories from Security
Related articles
Related jobs
Poll
Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?
TFL director of Games transport Mark Evers discusses how the public transport network is preparing for this summer's event
Connect with V3.co.uk
The wrong printers, for the wrong tasks on the wrong contracts
Who leads the BI pack and who should we be watching out for?
Functional Oracle Support Analyst - EBS Financials, Support...
Oracle E-Business Suite Technical Consultant - EBS...
Oracle Applications DBA - East London - All salaries...
Oracle Functional Consultants - Financial - Project Accounting...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?