False positives with BIND 8.4.1-REL?
Manuel Kiessling
manuel at kiessling.net
Wed Sep 24 06:50:29 EDT 2003
Hello,
I'm using the latest 8.x BIND version on one of my servers, which plugin
#10028 correctly detects as 8.4.1-REL.
Although the version number is correctly detected there, the plugins
#10329 and #10605 report false positives:
"The remote BIND server, according to its
version number, is vulnerable to an inverse
query overflow.
Solution : upgrade to bind 8.1.2 or 4.9.7"
"The remote BIND server, according to its
version number, is vulnerable to various buffer
overflows that may allow an attacker to
gain a shell on this host.
Solution : upgrade to bind 8.2.3 or 4.9.8"
Looks like these plugins think my BIND is < 8.1.2 - maybe the "-REL" is
confusing them?
--
Manuel Kiessling
More information about the Nessus
mailing list