CVE-2007-2930

Severity

43%

Complexity

86%

Confidentiality

48%

The (1) NSID_SHUFFLE_ONLY and (2) NSID_USE_POOL PRNG algorithms in ISC BIND 8 before 8.4.7-P1 generate predictable DNS query identifiers when sending outgoing queries such as NOTIFY messages when answering questions as a resolver, which allows remote attackers to poison DNS caches via unknown vectors. NOTE: this issue is different from CVE-2007-2926.

The (1) NSID_SHUFFLE_ONLY and (2) NSID_USE_POOL PRNG algorithms in ISC BIND 8 before 8.4.7-P1 generate predictable DNS query identifiers when sending outgoing queries such as NOTIFY messages when answering questions as a resolver, which allows remote attackers to poison DNS caches via unknown vectors. NOTE: this issue is different from CVE-2007-2926.

CVSS 2.0 Base Score 4.3. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:N/I:P/A:N).

Overview

First reported 17 years ago

2007-09-12 01:17:00

Last updated 6 years ago

2018-10-16 16:46:00

Affected Software

ISC BIND

References

HPSBUX02289

26629

26858

27433

27459

27465

27696

103063

200859

http://support.avaya.com/elmodocs2/security/ASA-2007-448.htm

http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=653968

R-333

Patch

http://www.isc.org/index.pl?/sw/bind/bind8-eol.php

Patch

VU#927905

Patch, US Government Resource

20070827 BIND 8 EOL and BIND 8 DNS Cache Poisoning (Amit Klein, Trusteer)

20071001 Re: BIND 8 EOL and BIND 8 DNS Cache Poisoning (Amit Klein, Trusteer)

20071006 Re: BIND 8 EOL and BIND 8 DNS Cache Poisoning (Amit Klein, Trusteer)

25459

1018615

http://www.trusteer.com/docs/bind8dns.html

ADV-2007-2991

ADV-2007-3192

ADV-2007-3639

ADV-2007-3668

ADV-2007-3936

http://www116.nortel.com/pub/repository/CLARIFY/DOCUMENT/2007/43/022954-01.pdf

http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=3975

oval:org.mitre.oval:def:2154

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.