Strike ID:
D19-0nf41
CVSS:
7.8 (AV:N/AC:L/Au:N/C:N/I:N/A:C)
False Positive:
t
Variants:
1
Year:
2018

Description

This strike exploits a memory leak denial of service vulnerability in ISC BIND. Requests with multiple edns-key-tag EDNS0 options result in a memory leak. An attacker can send multiple messages with multiple edns-key-tag EDNS0 options to exhaust system memory, resulting in a denial of corruption condition. Note: it takes thousands of malicious messages to exhaust a systems memory. However a single malicious packet can be identified. This strike sends a single malicious message

CVE

References

MSB

BID

ExploitDB

Secunia

Security Tracker

Metasploit

ZDI

Google

OSVDB

{}