FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2008-1447

This CVE name corresponds to:

Entered Topic
2008-08-16 ruby -- DNS spoofing vulnerability
2008-07-13 FreeBSD -- DNS cache poisoning

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2008-1447 at cve.mitre.org

Details

Type Candidate
Name CVE-2008-1447
Phase Assigned(20080321)

Description

The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referrals to conduct cache poisoning against recursive resolvers, related to insufficient randomness of DNS transaction IDs and source ports, aka "DNS Insufficient Socket Entropy Vulnerability."

References

Source Reference
MISC http://blog.invisibledenizen.org/2008/07/kaminskys-dns-issue-accidentally-leaked.html
MISC http://www.doxpara.com/?p=1176
MISC http://www.nominum.com/asset_upload_file741_2661.pdf
CONFIRM http://www.isc.org/index.pl?/sw/bind/bind-security.php
CONFIRM http://www.kb.cert.org/vuls/id/MIMG-7DWR4J
CONFIRM http://www.bluecoat.com/support/security-advisories/dns_cache_poisoning
CONFIRM http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0231
AIXAPAR IZ26667
AIXAPAR IZ26668
AIXAPAR IZ26669
AIXAPAR IZ26670
AIXAPAR IZ26671
AIXAPAR IZ26672
CISCO 20080708 Multiple Cisco Products Vulnerable to DNS Cache Poisoning Attacks
CISCO 20080708 Multiple Cisco Product Vulnerable to DNS Cache Poisoning Attacks
DEBIAN DSA-1603
DEBIAN DSA-1604
DEBIAN DSA-1605
FEDORA FEDORA-2008-6256
FEDORA FEDORA-2008-6281
FREEBSD FreeBSD-SA-08:06
GENTOO GLSA-200807-08
HP HPSBUX02351
HP SSRT080058
MANDRIVA MDVSA-2008:139
MS MS08-037
OPENBSD [4.2] 013: SECURITY FIX: July 23, 2008
OPENBSD [4.3] 004: SECURITY FIX: July 23, 2008
REDHAT RHSA-2008:0533
SLACKWARE SSA:2008-205-01
SUNALERT 239392
SUSE SUSE-SA:2008:033
UBUNTU USN-622-1
CERT TA08-190B
CERT TA08-190A
CERT-VN VU#800113
FRSIRT ADV-2008-2019
FRSIRT ADV-2008-2023
FRSIRT ADV-2008-2025
FRSIRT ADV-2008-2029
FRSIRT ADV-2008-2030
FRSIRT ADV-2008-2113
FRSIRT ADV-2008-2114
FRSIRT ADV-2008-2123
FRSIRT ADV-2008-2139
SECTRACK 1020438
SECTRACK 1020440
SECTRACK 1020437
SECUNIA 31019
SECUNIA 30925
SECUNIA 30973
SECUNIA 30977
SECUNIA 30979
SECUNIA 30980
SECUNIA 30988
SECUNIA 30989
SECUNIA 30998
SECUNIA 31011
SECUNIA 31014
SECUNIA 31031
SECUNIA 31052
SECUNIA 31033
SECUNIA 31094
SECUNIA 31072
SECUNIA 31093
SECUNIA 31143
SECUNIA 31137
SECUNIA 31151
SECUNIA 31152
SECUNIA 31153
SECUNIA 31169
SECUNIA 31209
SECUNIA 31212
SECUNIA 31199
XF win-dns-client-server-spoofing(43334)
XF cisco-multiple-dns-cache-poisoning(43637)

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.