SOL8077 - BIND 8 vulnerability CVE-2007-2930

2007-11-05T00:00:00
ID SOL8077
Type f5
Reporter f5
Modified 2013-03-20T00:00:00

Description

The NSID_SHUFFLE_ONLY and NSID_USE_POOL PRNG algorithms in ISC BIND 8 before 8.4.7-P1 generate predictable DNS query identifiers when sending outgoing queries such as NOTIFY messages when answering questions as a resolver, which allows remote attackers to poison DNS caches using unknown vectors.

Information about this advisory is available at the following location:

<http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2930>