All the latest UK technology news, reviews and analysis
|
|
|
05 Jun 2002
The Internet Software Consortium (ISC)has warned of a glitch in Bind 9, which has spoiled the Domain Name System (DNS) server's otherwise spotless security record.
A denial-of-service vulnerability in the latest version of the Bind software most commonly used to run DNS servers allows attackers to remotely shut down the domain name machines.
Further reading
Servers running versions of Bind 9 prior to 9.2.1 are affected by this hole, while other services could be affected if the vulnerability is exploited.
Although sending a specifically crafted DNS packet designed to trigger an internal consistency check will force the server to shut down, the vulnerability will not allow an attacker to execute arbitrary code or write data to arbitrary locations in memory.
Along with the ISC release of Bind, various server software packages from Caldera, HP, Mandrake, Red Hat and SuSe also incorporate Bind 9 and are therefore vulnerable.
Latest stories from Security
Related videos
Related articles
Related jobs
Poll
Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?
Orange and Intel talk us through the ins and outs of their San Diego smartphone
Connect with V3.co.uk
The wrong printers, for the wrong tasks on the wrong contracts
Who leads the BI pack and who should we be watching out for?
Buyer/Procurement Specialist x 8 £30,000 - £40...
Systems Analyst/Architect £30,000 - £40,000 + excellent...
Software Developer Up to £27,000 + excellent...
Software Engineer/Developer (C++) £25,000 - £40...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?