Another Word For It Patrick Durusau on Topic Maps and Semantic Diversity

August 1, 2015

POC – BIND9 TKEY CVE-2015-5477 DoS

Filed under: Cybersecurity — Patrick Durusau @ 3:36 pm

Rob Graham has posted a proof of concept (POC) for BIND9 TKEY CVE-2015-5477 DoS.

If you don’t memorize Common Vulnerability and Exposures (CVE) as they appear, CVE-2015-5477 gives the following description:

named in ISC BIND 9.x before 9.9.7-P2 and 9.10.x before 9.10.2-P3 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via TKEY queries.

The POC may or may not be of interest to you but in these security conscious times, the main CVE page will be. The entire CVE database is available for download if you want to try your hand at creative indexing.

There are a number of other valuable resources at the CVE page so take the time to explore while you are there.

No Comments

No comments yet.

RSS feed for comments on this post.

Sorry, the comment form is closed at this time.

Powered by WordPress