ISC.BIND.RRSIG.Query.RPZ.DoS
Description
This indicates an attack attempt against a Denial of Service vulnerability in ISC BIND.
The vulnerability is caused by an assertion failure when processing "RRSIG" queries, if Response Policy Zones (RPZ) are configured to force a specific "RRSet" for some name. A remote attacker can exploit this vulnerability by sending "RRSIG" requests to the vulnerable server.
Affected Products
ISC BIND 9.8.0
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Refer to the vendor's website for a suggested workaround.
https://www.isc.org/CVE-2011-1907
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |