dnskeygen in BIND 8.2.4 and earlier, and dnssec-keygen in BIND 9.1.2 and earlier, set insecure permissions for a HMAC-MD5 shared secret key file used for DNS Transactional Signatures (TSIG), which allows attackers to obtain the keys and perform dynamic DNS updates.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Bind | Isc | * | 8.2.4 |
Bind | Isc | 9.0 | 9.1.2 |