[PLUG] [Fwd: ISS Security Advisory: Multiple Remote Vulnerabilities in BIND4 and BIND8]
Paul Heinlein
heinlein at attbi.com
Wed Nov 13 18:59:12 UTC 2002
On Wed, 13 Nov 2002, Dan Haskell wrote:
> Note that this is only for Bind 4 and 8. The doughnut goes to those
> who have already upgraded to 9. And anyone who is still running 4
> deserves what they get. :)
Sub-note:
Versions of BIND 9 prior to 9.2.1 *are* vulnerable to a DoS attack,
and even 9.2.1 is vulnerable to a buffer overflow if you
./configure-ed it with the --enable-libbind option.
--Paul Heinlein <heinlein at attbi.com>
More information about the PLUG
mailing list