"BIND4/BIND8 Unsuitable for Forwarder Use"
Florian Weimer
fw at deneb.enyo.de
Fri Feb 10 09:54:03 UTC 2006
* Florian Weimer:
> There's this note on the BIND 8 web page:
>
> | BIND4/BIND8 Unsuitable for Forwarder Use
> |
> | If a nameserver -- any nameserver, whether BIND or otherwise -- is
> | configured to use ``forwarders'', then none of the target forwarders
> | can be running BIND4 or BIND8. Upgrade all nameservers used as
> | ``forwarders'' to BIND9. There is a current, wide scale
> | Kashpureff-style DNS cache corruption attack which depends on BIND4
> | and BIND8 as ``forwarders'' targets.
>
> Has CVE/MITRE assigned a CAN name for this issue? I can't find
> anything.
It seems it has been assigned CVE-2006-0527.
More information about the bind-users
mailing list