CVE-2002-0400

Name of the Vulnerable Software and Affected Versions ISC BIND 9 versions prior to 9.2.1

Description A logic error exists within the dns message findtype() routine that may allow remote attackers to cause the server program (named) to fail and shutdown. The issue arises when the rdataset parameter to the dns message findtype() function is not properly handled, leading to an error condition that triggers the server to shut down. This requires manual restart of the server.

Recommendations For versions prior to 9.2.1, update to version 9.2.1 or later to resolve the issue. As a temporary workaround, consider implementing measures to prevent malformed DNS packets from reaching the server, such as configuring firewall rules or using a DNS proxy to filter out suspicious traffic.