Visit This Site

BIND Software Flaw is Being Exploited

August 3, 2015 – A software flaw within BIND, the most prevalent DNS server software on the internet, is being exploited
by hackers. It’s a denial of service flaw which affects all version of BIND 9, and a patch was issued last week. All
it takes is a single packet to exploit the flaw, which will crash both Authoritative and Recursive DNS servers. There
is currently no way around this bug, so administrators must deploy the patch to prevent these attacks. Several major
Linux distributions have issued patches including CentOS, Red Hat, and Ubuntu, but administrators must still install
the patch and restart the servers.

According to sources, the attack will leave a trace in the server logs. If you have querylog enabled, the command
“ANY TKEY” should appear.

The patch is available here


Leave a review/comment

© Copyright 2008 by DNS Reviews