ISC BIND 9 DNSSEC Query Response Additional Section Remote Cache Poisoning Vulnerability

ISC BIND 9 is prone to a remote cache-poisoning vulnerability.

An attacker may leverage this issue to manipulate cache data, potentially facilitating man-in-the-middle, site-impersonation, or denial-of-service attacks.

Versions prior to the following are vulnerable:

BIND 9.4.3-P5
BIND 9.5.2-P2
BIND 9.6.1-P3

UPDATE (Jan 20, 2010): Reports indicate this issue was not properly addressed initially. Additional updates from the vendor are available.


Privacy Statement
Copyright 2010, SecurityFocus