40 matches found
bind: Cache poisoning due to weak PRNG
A vulnerability was found in BIND resolvers caused by a weakness in the Pseudo Random Number Generator PRNG. This weakness allows an attacker to potentially predict the source port and query ID used by BIND, enabling cache poisoning attacks. If successful, the attacker can inject malicious DNS...
bind: Cache poisoning due to weak PRNG
A vulnerability was found in BIND resolvers caused by a weakness in the Pseudo Random Number Generator PRNG. This weakness allows an attacker to potentially predict the source port and query ID used by BIND, enabling cache poisoning attacks. If successful, the attacker can inject malicious DNS...
SUSE CVE-2025-40780
In specific circumstances, due to a weakness in the Pseudo Random Number Generator PRNG that is used, it is possible for an attacker to predict the source port and query ID that BIND will use. This issue affects BIND 9 versions 9.16.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.1...
CVE-2025-40780
In specific circumstances, due to a weakness in the Pseudo Random Number Generator PRNG that is used, it is possible for an attacker to predict the source port and query ID that BIND will use. This issue affects BIND 9 versions 9.16.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.1...
CVE-2025-40780
A vulnerability was found in BIND resolvers caused by a weakness in the Pseudo Random Number Generator PRNG. This weakness allows an attacker to potentially predict the source port and query ID used by BIND, enabling cache poisoning attacks. If successful, the attacker can inject malicious DNS...
CVE-2025-40780 Cache poisoning due to weak PRNG
In specific circumstances, due to a weakness in the Pseudo Random Number Generator PRNG that is used, it is possible for an attacker to predict the source port and query ID that BIND will use. This issue affects BIND 9 versions 9.16.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.1...
CVE-2025-40780
In specific circumstances, due to a weakness in the Pseudo Random Number Generator PRNG that is used, it is possible for an attacker to predict the source port and query ID that BIND will use. This issue affects BIND 9 versions 9.16.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.1...
CVE-2025-40780
CVE-2025-40780 concerns BIND where a weakness in the PRNG can allow an attacker to predict the source port and query ID used by BIND. Connected advisories confirm this affects multiple BIND9 SPANs across releases (e.g., 9.16.x, 9.18.x, 9.20.x, 9.21.x) and related package updates. The root cause i...
EUVD-2022-0095
Malicious code in bioql PyPI...
SUSE-SU-2025:20103-1 Security update for avahi
This update for avahi fixes the following issues: - CVE-2024-52616: Properly randomize query id of DNS packets bsc1233420. Bug fixes: - No longer supply bogus services to callbacks bsc1226586. - Tag hardening patches as PATCH-FEATURE-OPENSUSE - Remove dependency on /usr/bin/python3 using...
CVE-2023-31147
c-ares is an asynchronous resolver library. When /dev/urandom or RtlGenRandom are unavailable, c-ares uses rand to generate random numbers used for DNS query ids. This is not a CSPRNG, and it is also not seeded by srand so will generate predictable output. Input from the random number generator i...
Denial Of Service (DoS)
ISC BIND is vulnerable to denial of service DoS. A flaw was found in the way BIND generates outbound DNS query ids. If an attacker is able to acquire a finite set of query IDs, it becomes possible to accurately predict future query IDs. Future query ID prediction may allow an attacker to conduct ...
Bime: Attacker can access graphic representation of every query
Vulnerability details On a dashboard, widgets can be added to show a graphic representation of a query. These queries come from datasources. When creating a widget, a query ID is given. This query ID can be changed in order to obtain the results of the dataset through a scheduled email. This leak...
The vulnerability of the microprogrammed software of the N600 DB Belkin F9K1102 allows a hacker to replace the responses to requests.
The vulnerability of the N600 DB Belkin F9K1102 router’s microprogramming software exists due to the use of an incorrect algorithm for selecting the value of the ID in the DNS query header. Exploiting this vulnerability allows a malicious actor to replace the responses to queries by predicting th...
FreeBSD Security Advisory (FreeBSD-SA-07:07.bind.asc)
The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-07:07.bind.asc ADV FreeBSD-SA-07:07.bind.asc OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft In...
Fedora 7 : bind-9.4.1-7.P1.fc7 (2007-1247)
CVE-2007-2925 - allow-query-cache/allow-recursion default acls not set - workaround - disable recursion or explicitly set allow-query-cache and allow-recursion acls - CVE-2007-2926 - cryptographically weak query id generator - 1 in 8 chance of guessing the next query id for 50% of the query ids -...
ISC BIND < 8.4.7-P1 Outgoing Query Predictable DNS Query ID (deprecated)
Binary data 4195.prm...
CVE-2007-2926
ISC BIND 9 through 9.5.0a5 uses a weak random number generator during generation of DNS query ids when answering resolver questions or sending NOTIFY messages to slave name servers, which makes it easier for remote attackers to guess the next query id and perform DNS cache poisoning...
ISC BIND DNS Query ID Field Prediction Cache Poisoning (deprecated)
Binary data 4578.prm...
CVE-1999-0024
CVE-1999-0024 describes a DNS cache-poisoning flaw in BIND caused by predictable DNS query IDs. The connected sources consistently state DNS cache poisoning via BIND, with related discussions in Red Hat/Security advisories and CERT context. The materials do not provide a concrete patch version or...