‘HP-UX Running BIND compromise of NXDOMAIN Responses’

Published on June 28th, 2010
Summary

A potential vulnerability was discovered on HP-UX running BIND.’

Credit:

‘The original article can be found at: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02097674


Details

Vulnerable Systems:
 * HP-UX B.11.11 running BIND 9.3 prior to C.9.3.2.7.0
 * HP-UX B.11.23 running BIND 9.3 prior to C.9.3.2.7.0
 * HP-UX B.11.31 running BIND 9.3 prior to C.9.3.2.7.0

Immune Systems:
 * HP-UX B.11.11 running BIND 9.3 C.9.3.2.7.0
 * HP-UX B.11.23 running BIND 9.3 C.9.3.2.7.0
 * HP-UX B.11.31 running BIND 9.3 C.9.3.2.7.0

A potential security vulnerability has been identified with HP-UX running BIND. This vulnerability could be exploited remotely to compromise NXDOMAIN responses.

CVE Information:
CVE-2010-0097

Disclosure Timeline:
2010-04-21: Relase Date
2010-04-21: Last Updated’

Categories: UNIX
Tags:

Related Posts

UNIX

‘ProFTPD Response Pool Use-After-Free Code Execution Vulnerability’

'This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the ProFTPd server.'

UNIX

‘Insight Control for Linux Multiple Vulnerabilities’

'Remote unauthorized elevation of privilege, execution of arbitrary code, encryption downgrade, information disclosure and Denial of Service (DoS) vulnerabilities were identified in Insight Control for Linux.'

UNIX

‘HP-UX Running NFS/ONCplus Denial of Service Vulnerability’

'A potential security vulnerability has been identified with NFS/ONCplus running on HP-UX.'