CVE-2001-0010

Name of the Vulnerable Software and Affected Versions ISC BIND versions 4.9 through 4.9.7 ISC BIND versions 8.1 through 8.2.3 Beta ISC BIND 8.2.2 p5 and earlier patches

Description A buffer overflow in the transaction signature (TSIG) handling code allows remote attackers to gain root privileges. The error processing function fails to accurately determine the memory available to form a response to the client, and the stack or heap space containing the buffer can be manipulated to execute arbitrary code. Additionally, a remote attacker can send an inverse query to the BIND server to access the program stack and view environment variables. The default installation of BIND also fails to properly support compressed zone transfers (ZXFR), making it vulnerable to a denial of service attack.

Recommendations For ISC BIND versions 4.9 through 4.9.7, update to a version outside of this range to resolve the issue. For ISC BIND versions 8.1 through 8.2.3 Beta, update to a version outside of this range to resolve the issue. For ISC BIND 8.2.2 p5 and earlier patches, apply a patch to fix the buffer overflow and denial of service vulnerabilities, and restrict access to the TSIG handling code until the patch is applied. As a temporary workaround, consider disabling the TSIG handling code until a patch is available.