ISC BIND TSIG Zone Transfer Denial Of Service Vulnerability

ISC BIND TSIG Zone Transfer Denial Of Service Vulnerability

ISC BIND is prone to a remote denial-of-service vulnerability. This issue is due to a failure in the application to properly handle malformed TSIG (Secret Key Transaction Authentication for DNS) replies.

To exploit this issue, attackers must be able to send messages with a correct TSIG during a zone transfer. This limits the potential for remote exploits significantly.

An attacker can exploit this issue to crash the affected service, effectively denying service to legitimate users.