CVE-2007-2188

2007-04-24T17:19:00
ID CVE-2007-2188
Type cve
Reporter cve@mitre.org
Modified 2008-11-13T06:38:00

Description

eXtremail 2.1.1 and earlier does not verify the ID field (aka transaction id) in DNS responses, which makes it easier for remote attackers to conduct DNS spoofing.