CVE-2005-0034

Name of the Vulnerable Software and Affected Versions BIND version 9.3.0

Description The issue is caused by an "incorrect assumption" in the authvalidated validator function when DNSSEC is enabled. This allows remote attackers to cause a denial of service, resulting in the named server exiting, by sending crafted DNS packets that cause an internal consistency test to fail.

Recommendations For BIND version 9.3.0, consider disabling DNSSEC until a patch is available to prevent the denial of service. Additionally, restrict access to the authvalidated validator function to minimize the risk of exploitation.