Design/Logic Flaw

A certain pseudo-random number generator PRNG algorithm that uses XOR and 3-bit random hops aka "Algorithm X3", as used in OpenBSD 2.8 through 4.2, allows remote attackers to guess sensitive values such as DNS transaction IDs by observing a sequence of previously generated values. NOTE: this issu...

CVE-2008-1146

CVE-2008-1146 affects OpenBSD 2.8–4.2 where a PRNG using XOR with 3-bit hops (Algorithm X3) enables remote attackers to infer DNS transaction IDs from prior outputs, potentially enabling DNS cache poisoning on OpenBSD’s BIND modification. Impact per NVD indicates partial confidentiality, partial ...