PublicDate: 2007-07-24 17:30:00 UTC
Candidate: CVE-2007-2925
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2925
Description:
 The default access control lists (ACL) in ISC BIND 9.4.0, 9.4.1, and
 9.5.0a1 through 9.5.0a5 do not set the allow-recursion and
 allow-query-cache ACLs, which allows remote attackers to make recursive
 queries and query the cache.
Ubuntu-Description:
Notes:
 kees> recursion should be a admin policy, and is already mediated by edgy+ bind default configs
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_bind9: ignored (ugly backport, low benefit)
edgy_bind9: ignored (ugly backport, low benefit)
feisty_bind9: ignored (ugly backport, low benefit)
devel_bind9: released (9.4.1-P1-1)
upstream_bind9: needs-triage