SUSE-SA:2002:044: bind8

high Nessus Plugin ID 13765

Synopsis

The remote host is missing a vendor-supplied security patch

Description

The remote host is missing the patch for the advisory SUSE-SA:2002:044 (bind8).


The security research company ISS (Internet Security Services) has discovered several vulnerabilities in the BIND8 name server, including a remotely exploitable buffer overflow.


1. There is a buffer overflow in the way named handles SIG records. This buffer overflow can be exploited to obtain access to the victim host under the account the named process is running with.

2. There are several Denial Of Service problems in BIND8 that allow remote attackers to terminate the name server process.

Both vulnerabilities are addressed by this update, using patches originating from ISC.

Solution

http://www.suse.de/security/2002_004_bind8.html

Plugin Details

Severity: High

ID: 13765

File Name: suse_SA_2002_044.nasl

Version: 1.19

Agent: unix

Published: 7/25/2004

Updated: 1/14/2021

Supported Sensors: Continuous Assessment, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.5

CVSS v2

Risk Factor: High

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

Required KB Items: Host/SuSE/rpm-list

Reference Information

CVE: CVE-2002-1219, CVE-2002-1221