Controls for zone transfers may not be properly applied to Dynamically Loadable Zones (DLZs) if the zones are writable in bind prior to 9.13.7. A client exercising this defect can request and receive a zone transfer of a DLZ even when not permitted to do so by the allow-transfer ACL.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
isc bind |
||
isc bind 9.9.3 |
||
isc bind 9.10.8 |
||
isc bind 9.11.5 |
||
isc bind 9.12.3 |
||
redhat enterprise linux 8.0 |