NSD before 4.1.11 allows remote DNS master servers to cause a denial of service via a zone transfer with unlimited data.