Hello, Folks.

For those who are using BIND, several vulnerabilities have been found in
versions of the software.  This may or may not be an issue for your site
based upon what release you're running, but it wouldn't hurt to check.  The
most recent versions of the software are said to fix the problems.

A brief excerpt from the CERT advisory at
http://www.cert.org/advisories/CA-2001-02.html

Systems Affected

Domain Name System (DNS) Servers running various versions of ISC BIND
(including both 4.9.x prior to 4.9.8 and 8.2.x prior to 8.2.3; 9.x is not
affected) and derivatives. Because the normal operation of most services on
the Internet depends on the proper operation of DNS servers, other services
could be impacted if these vulnerabilities are exploited.

Overview

The CERT/CC has recently learned of four vulnerabilities spanning multiple
versions of the Internet Software Consortium's (ISC) Berkeley Internet Name
Domain (BIND) server. BIND is an implementation of the Domain Name System
(DNS) that is maintained by the ISC. Because the majority of name servers in
operation today run BIND, these vulnerabilities present a serious threat to
the Internet infrastructure.

I. Description

VU#196945 - ISC BIND 8 contains buffer overflow in transaction signature
(TSIG) handling code
VU#572183 - ISC BIND 4 contains buffer overflow in nslookupComplain()
VU#868916 - ISC BIND 4 contains input validation error in nslookupComplain()
VU#325431 - Queries to ISC BIND servers may disclose environment variables

Regards,

Adam Dorritie
Easy Does It Technologies
http://www.editcorp.com
(702) 270-6402