Re: [cobalt-security] new bind exploit?

craig Tue, 18 Jun 2002 02:30:40 -0700


> Hi all,
>
> I have searched the list(s) security and user and not found a mention of
> this, so here goes....
>
> There is a newish exploit for the current package version of bind,
> (8.2.3-C1) - details as follows:
>
> Name: "tsig bug"
> Versions affected:     8.2, 8.2-P1, 8.2.1, 8.2.2-P1, 8.2.2-P2, 8.2.2-P3,
> 8.2.2-P4, 8.2.2-P5, 8.2.2-P6, 8.2.2-P7, and all 8.2.3-betas
> Severity:     CRITICAL
> Exploitable:     Remotely
> Type:     Access possible.
>

You should be running VERSION.BIND    text = "8.2.3-REL
if you have the lastest pkg that is installed


_______________________________________________
cobalt-security mailing list
[EMAIL PROTECTED]
http://list.cobalt.com/mailman/listinfo/cobalt-security

Re: [cobalt-security] new bind exploit?

Reply via email to