[原文]The DNS implementation of DNRD before 2.10 allows remote attackers to cause a denial of service via a compressed DNS packet with a label length byte with an incorrect offset, which could trigger an infinite loop.
Cisco Multiple Products Unspecified Compressed DNS Message DoS (2)
Remote / Network Access
Denial of Service
Loss of Availability
Various Cisco products contain a flaw that may allow a remote denial of service. The issue is triggered when the devices receive a DNS packet containing crafted compressed data that causes errors in decompression, and will result in loss of availability for the service or device.
Upgrade to the product versions listed in the Cicso advisory or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.