• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

ISC BIND Q_UseDNS Remote Buffer Overflow Vulnerability

Solution:
The vendor has released an upgrade dealing with this issue.

Astaro Security Linux has released Up2Date 5.103 dealing with this issue. Please see the referenced notice in the reference section for more information.

SCO has released advisory SCOSA-2006.1, along with fixes to address this issue in SCO OpenServer 5.0.6, 5.0.7, and 6.0.0. Please see the referenced advisory for further information.


SCO Open Server 5.0.6

• SCO p531004.507_vol.tar
  ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.1/p531004.507_vol. tar

SCO Open Server 5.0.7

• SCO p531004.507_vol.tar
  ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.1/p531004.507_vol. tar

SCO Open Server 6.0

• SCO p531004.600_vol.tar
  ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.1/p531004.600_vol. tar

ISC BIND 8.4.4

• ISC BIND 8.4.6
  http://www.isc.org/index.pl?/sw/bind/

ISC BIND 8.4.5

• ISC BIND 8.4.6
  http://www.isc.org/index.pl?/sw/bind/