all InfoSec news
Pair of Serious Flaws Patched in BIND 9
Malware Analysis, News and Indicators - Latest topics malware.news
There are two serious vulnerabilities in several versions of the widely deployed BIND DNS server that can allow an attacker to kill the main name server process remotely.
Although both bugs affect the named process in BIND, they lie in different places in the code base. The first vulnerability (CVE-2023-3341) is in the portion of BIND that processes control channel messages. In some cases, that code can exhaust all of the available stack memory, which would force named to exit. …
attacker base bind bind dns bugs code code base cve dns dns server flaws kill main name places process serious server vulnerabilities vulnerability