 |
|
|
|
Multiple DNS servers and clients DNS records spoofing
updated since 12.07.2008 | | Published: |  | 29.07.2008 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 9142 | | Type: |  | client | | Level: |  | 6/10 | | Description: |  | DNS poisoning attack may be used to spoof query results. |
| Affected: |  | CISCO : IOS 12.2 | | | | CISCO : IOS 12.3 | | | | BIND : bind 9.3 | | | | CISCO : IOS 12.4 | | | | PDNS : pdns-recursor 3.1 | | | | PYTHON : python-dns 2.3 | | CVE: |  | CVE-2008-1637 (PowerDNS Recursor before 3.1.5 uses insufficient randomness to calculate (1) TRXID values and (2) UDP source port numbers, which makes it easier for remote attackers to poison a DNS cache, related to (a) algorithmic deficiencies in rand and random functions in external libraries, (b) use of a 32-bit seed value, and (c) choice of the time of day as the sole seeding information.) | | | | CVE-2008-1447 (The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referrals to conduct cache poisoning against recursive resolvers, related to insufficient randomness of DNS transaction IDs and source ports, aka "DNS Insufficient Socket Entropy Vulnerability" or "the Kaminsky bug.") |
|
|
|
|
|
|
|
|
