The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Nessus reports insecure bind etc.

Discussion in 'Bind / DNS / Nameserver Issues' started by tipsterbaine, Feb 12, 2004.

  1. tipsterbaine

    tipsterbaine Member

    Joined:
    Dec 17, 2003
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    1
    Just run nessus on my Redhat 7.3 WHM 8.8.0 cPanel 8.8.0-S74 box (with automatic security updates, automatic cPanel Package Updates & manual Cpanel/WHM Updates).

    It's telling me that bind and openssh are insecure. I understand this is misleading in the case of openssh, but should I do anything about the bind problem ?

    Many thanks.








    ---------------
    The remote BIND 9 DNS server, according to its version number, is vulnerable to a
    buffer overflow which may allow an attacker to gain a shell on this host or
    to disable this server.


    Solution : upgrade to bind 9.2.2 or downgrade to the 8.x series

    See also : http://www.isc.org/products/BIND/bind9.html
    http://cert.uni-stuttgart.de/archive/bugtraq/2003/03/msg00075.html
    http://www.cert.org/advisories/CA-2002-19.html
    Risk factor : High
    CVE : CAN-2002-0684
    Other references : IAVA:2003-B-0001
    ----------------
     
Loading...
Similar Threads - Nessus reports insecure
  1. MACscr
    Replies:
    8
    Views:
    360

Share This Page