CVE-2011-2465

Name of the Vulnerable Software and Affected Versions ISC BIND 9 versions 9.8.0 through 9.8.1b1

Description The issue allows remote attackers to cause a denial of service, resulting in the named daemon crashing. This occurs when recursion is enabled and the Response Policy Zone (RPZ) contains DNAME or certain CNAME records. The estimated number of potentially affected devices and details about real-world incidents are not specified.

Recommendations For ISC BIND 9 versions 9.8.0 through 9.8.1b1, consider disabling recursion or restricting the use of Response Policy Zone (RPZ) until a patch is available. Additionally, avoid using DNAME or certain CNAME records in the RPZ to minimize the risk of exploitation.