Strony

środa, 12 sierpnia 2009

Easy way to determine BIND version remotely

Because of this remote denial of service in BIND you can easly check if any server is vulnerable (only if this server support it):

$ dig @localhot version.bind chaos txt


answer will look like this:

;; ANSWER SECTION:
version.bind.           0       CH      TXT     "9.4.3-P3"


if you would like to use nslookup try:
$ nslookup
> server localhost
Default server: localhost
Address: 127.0.0.1#53
> set class=chaos
> set type=txt
> version.bind
Server: localhost
Address: 127.0.0.1#53

version.bind text = "9.4.3-P3"

0 komentarze: