Sun Microsystems announced a new security vulnerability affecting BIND for Solaris 10 on SPARC and X86 platforms. A vulnerability in DNSSEC could allow an attacker to cause the BIND server process to exit resulting in a Denial of Service (DoS)(CVE-2007-0494). Although Sun has made patches available, it is advisable to run BIND without DNSSEC until patches can be applied.
Get Slaptijack updates delivered to your Inbox or RSS Reader for free!