Security Scan fix for PCI-DSS
One of our customers needs a valid CVSS scan of our server. However, when I scan I get a fail on:
ISC BIND 9 Zero-Length RDATA Section Denial of Service / Information Disclosure dns (53/udp)
CVE-2012-1667
I have the latest version of BIND installed that cPanel support.
Any ideas how to fix this apparent vulnerability?
-
its patched you need to submit the change log to them example below rpm -q --changelog bind-9.8.2-0.37.rc1.el6_7.4 | grep CVE-2012-1667 - fix CVE-2012-1667 0 -
Hello :) The OS vendor backports patches, known as CVEs, for Bind. You can use the following command to verify this and provide it to the compliance company: rpm -q --changelog bind | grep CVE
Thank you.0
Please sign in to leave a comment.
Comments
2 comments