A vulnerability in ISC BIND could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on a targeted system. The vulnerability is due to an error in the nxdomain-redirect feature of the affected software. An attacker could exploit this vulnerability by sending a recursive query request to the targeted system. A successful exploit could cause BIND to exit and halt service to other clients, resulting in a DoS condition. ISC.org has confirmed the vulnerability and released software updates.
CVE-2019-6467 BIND nxdomain-redirect For educational purposes only Run $ docker run --rm --name cve-2019-6467 -it -p 53:53/udp knqyf263/cve-2019-6467 Exploit Normal query $ dig @127001 nxdomainexamplecom nxdomain can be replaced by anything that means non-existent domain name (eg foobarexamplecom) Reference ftpiscorg/isc/bind/9124-P1/RELEASE-NOTES-bind