CERT's advisory is the latest in a long series of problems both with the Berkeley Internet Name Domain (or BIND) server software and the DNS system in general. CERT alone has issued 12 advisories about exploits or vulnerabilities in the software since 1997.
The latest advisory warns of four separate vulnerabilities in multiple versions of the BIND server software, developed and maintained by the Internet Software Consortium.
The BIND 8 overflow is in the transaction signature handling code, and CERT officials said it is by far the most dangerous of the four vulnerabilities.
The link for this article located at ZDNet is no longer available.
