On Fri, May 27, 2011 at 10:04,
mailing@securitylabs.it <mailing@securitylabs.it> wrote:
On 26/05/2011 22:53, Jan Ingvoldstad wrote:
Hi.
At $workplace, two of our internal, caching DNS servers, running Bind
9 experienced crashes in quick order today.
***
*Summary:* A BIND 9 DNS server set up to be a caching resolver is
vulnerable to a user querying a domain with very large resource record
sets (RRSets) when trying to negatively cache a response. This can
cause the BIND 9 DNS server (named process) to crash.
*Document ID:* CVE-2011-1910
Yes, that one might be relevant. Thanks!
*Exploit Status:* High. This issue has caused un-intentional outages.
Indeed. :)