BIND is not the only flavor of DNS that is affected. Microsoft DNS was also vulnerable, as are others. Kaminsky does not say that it is a problem solely with BIND, but with various implementations of the DNS protocol.
Here's an interview with Dan Kaminsky at Black Hat 2008 where he explains it pretty well.
...that are based on ISC's crap code.
Here's an interview with Dan Kaminsky at Black Hat 2008 where he explains it pretty well.
Kaminisky is doing a lot of tooting of his own horn. Dan Bernstien published THIS in 2001 describing this very problem.
Rumor has it that Kaminisky is going to "discover" buffer overflows next week.~