Lucene search
Redhat.comRH:CVE-2007-2930HistoryOct 30, 2015 - 10:12 a.m.
CVE-2007-2930
2015-10-3010:12:39
redhat.com
access.redhat.com
10
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.8
Confidence
Low
EPSS
0.35
Percentile
97.2%
The (1) NSID_SHUFFLE_ONLY and (2) NSID_USE_POOL PRNG algorithms in ISC BIND 8 before 8.4.7-P1 generate predictable DNS query identifiers when sending outgoing queries such as NOTIFY messages when answering questions as a resolver, which allows remote attackers to poison DNS caches via unknown vectors. NOTE: this issue is different from CVE-2007-2926.
Related
prion
prion
Code injection
2007-09-12 01:17:00
Design/Logic Flaw
2007-07-24 17:30:00
Design/Logic Flaw
2007-09-12 01:17:00
cve
cve
ubuntucve
ubuntucve
CVE-2007-2930
2007-09-12 00:00:00
CVE-2007-2926
2007-07-24 00:00:00
cvelist
cvelist
CVE-2007-2930
2007-09-12 01:00:00
CVE-2007-2926
2007-07-24 17:00:00
nvd
nvd
openvas
openvas
HP-UX Update for BIND 8 HPSBUX02289
2009-05-05 00:00:00
FreeBSD Ports: named
2008-09-04 00:00:00
HP-UX Update for BIND HPSBUX02251
2009-05-05 00:00:00
nessus
nessus
Debian DSA-1341-2 : bind9 - design error
2007-08-13 00:00:00
RHEL 2.1 / 3 / 4 / 5 : bind (RHSA-2007:0740)
2007-07-27 00:00:00
debian
debian
[SECURITY] [DSA 1342-2] New bind9 packages fix DNS cache poisoning
2007-07-26 17:03:40
[SECURITY] [DSA 1341-1] New bind9 packages fix DNS cache poisoning
2007-07-25 21:13:15
oraclelinux
oraclelinux
Moderate: bind security update
2007-07-24 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package bind version 9.3.4-alt4
2007-07-24 00:00:00
Security fix for the ALT Linux 9 package bind version 9.3.4-alt4
2007-07-24 00:00:00
Security fix for the ALT Linux 8 package bind version 9.3.4-alt4
2007-07-24 00:00:00
cert
cert
ISC BIND generates cryptographically weak DNS query IDs
2007-07-27 00:00:00
BIND version 8 generates cryptographically weak DNS query identifiers
2007-08-28 00:00:00
centos
centos
bind, caching security update
2007-07-24 15:48:10
bind security update
2007-07-25 01:16:51
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:15:41
redhat
redhat
(RHSA-2007:0740) Moderate: bind security update
2007-07-24 00:00:00
osv
osv
bind9 - DNS cache poisoning vulnerability
2007-07-25 00:00:00
bind-9.16.20-1.4 on GA media
2024-06-15 00:00:00
ubuntu
ubuntu
Bind vulnerability
2007-07-25 00:00:00
debiancve
debiancve
CVE-2007-2926
2007-07-24 17:30:00
exploitdb
exploitdb
BIND 9 0.3beta - DNS Cache Poisoning
2007-08-07 00:00:00
ISC BIND 8 - Remote Cache Poisoning (2)
2007-08-27 00:00:00
ISC BIND 8 - Remote Cache Poisoning (1)
2007-08-27 00:00:00
checkpoint_advisories
checkpoint_advisories
Preemptive Protection against ISC BIND Cache Poisoning Vulnerability
2007-08-16 00:00:00
Security Best Practice: Protect Yourself against DNS Cache Poisoning
2007-08-16 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-07:07.bind
2007-08-01 00:00:00
freebsd
freebsd
FreeBSD -- Predictable query ids in named(8)
2007-07-24 00:00:00
suse
suse
DNS cache poisoning in bind, bind9
2007-08-01 16:07:35
fedora
fedora
[SECURITY] Fedora Core 6 Update: bind-9.3.4-7.P1.fc6
2007-07-26 15:35:49
[SECURITY] Fedora 7 Update: bind-9.4.1-7.P1.fc7
2007-07-25 05:15:35
[SECURITY] Fedora 7 Update: bind-9.4.2-2.fc7
2007-12-20 20:14:27
f5
f5
SOL8077 - BIND 8 vulnerability CVE-2007-2930
2007-11-05 00:00:00
K8077 : BIND 8 vulnerability CVE-2007-2930
2013-03-20 00:00:00
securityvulns
securityvulns
ertificate spoofing with subjectAltName and domain name wildcards
2007-11-19 00:00:00
slackware
slackware
[slackware-security] bind
2007-07-26 22:15:41
gentoo
gentoo
BIND: Weak random number generation
2007-08-18 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.8
Confidence
Low
EPSS
0.35
Percentile
97.2%
Related for RH:CVE-2007-2930