BIND named漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1106061 漏洞类型 未知
发布时间 2000-11-01 更新时间 2005-10-12
CVE编号 CVE-2000-0887 CNNVD-ID CNNVD-200012-149
漏洞平台 Linux CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/20388
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200012-149
|漏洞详情
BIND8.2到8.2.2-P6版本中named存在漏洞。远程攻击者通过制作压缩区域传输(ZXFR)请求并执行一项非缓存的权威性记录名称服务查询,又称为"zxfrbug."。
|漏洞EXP
source: http://www.securityfocus.com/bid/1923/info

BIND is the Berkeley Internet Name Daemon, a free Name Resolution software package maintained by the Internet Software Consortium. A Denial of Service exists in current implementations.

The problem occurs in the Compressed Zone Transfer (ZXFR) functionality of BIND. A default installation of BIND does not support the transfer of compressed zone files. However, daemon that allows zone transfers and recursive queries will crash if queried for a compressed zone transfer that is not in the nameserver cache. This could result in a name resolution Denial of Service for all users and systems depending upon nameservers using the affected software.

named-xfer -z zone.pippo.com -d 9 -f pics -Z dns.pippo.com
|参考资料

来源:CERT/CCAdvisory:CA-2000-20
名称:CA-2000-20
链接:http://www.cert.org/advisories/CA-2000-20.html
来源:BID
名称:1923
链接:http://www.securityfocus.com/bid/1923
来源:CONECTIVA
名称:CLSA-2000:339
链接:http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000339
来源:XF
名称:bind-zxfr-dos(5540)
链接:http://xforce.iss.net/xforce/xfdb/5540
来源:BUGTRAQ
名称:20001107BIND8.2.2-P5PossibleDOS
链接:http://www.securityfocus.com/archive/1/143843
来源:REDHAT
名称:RHSA-2000:107
链接:http://www.redhat.com/support/errata/RHSA-2000-107.html
来源:DEBIAN
名称:20001112bind:remoteDenialofService
链接:http://www.debian.org/security/2000/20001112
来源:MANDRAKE
名称:MDKSA-2000:067
链接:http://frontal2.mandriva.com/security/advisories?name=MDKSA-2000:067
来源:CONECTIVA
名称:CLSA-2000:338
链接:http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000338
来源:SUSE
名称:SuSE-SA:2000:45
链接:http://archives.neohapsis.com/archives/linux/suse/2000-q4/0657.html
来源:BUGTRAQ
名称:20001115TrustixSecurityAdvisory-bindandopenssh(andmodutils)
链接:http://archives.neohapsis.co