MiracleLinux 3 : dnsmasq-2.45-1AXS3.1.1 (AXBA:2008-315:02)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXBA:2008-315:02 advisory. - The DNS protocol, as implemented in 1 BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; 2 Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server...

K8938: BIND DNS cache poisoning vulnerability - CVE-2008-1447 - VU#800113

Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...

CVE-2008-3280

Technical details for CVE-2008-3280 are not provided in the supplied documents. Related issues (CVE-2008-0166, CVE-2008-1447) are mentioned, but this CVE’s specifics are not disclosed here.

Nmap NSE 6.01: dns-random-srcport

Checks a DNS server for the predictable-port recursion vulnerability. Predictable source ports can make a DNS server vulnerable to cache poisoning attacks see CVE-2008-1447. The script works by querying porttest.dns-oarc.net see https://www.dns- oarc.net/oarc/services/porttest. Be aware that any...

Scientific Linux Security Update : dnsmasq on SL5.x i386/x86_64

The dnsmasq DNS resolver used a fixed source UDP port. This could have made DNS spoofing attacks easier. dnsmasq has been updated to use random UDP source ports, helping to make DNS spoofing attacks harder. CVE-2008-1447 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text is...

Scientific Linux Security Update : bind on SL 3.0.x , SL 4.x, SL 5.x

The DNS protocol protects against spoofing attacks by requiring an attacker to predict both the DNS transaction ID and UDP source port of a request. In recent years, a number of papers have found problems with DNS implementations which make it easier for an attacker to perform DNS cache-poisoning...

Nmap NSE net: dns-random-srcport

Checks a DNS server for the predictable-port recursion vulnerability. Predictable source ports can make a DNS server vulnerable to cache poisoning attacks see CVE-2008-1447. The script works by querying porttest.dns-oarc.net see https://www.dns- oarc.net/oarc/services/porttest. Be aware that any...

Nmap NSE net: dns-random-txid

Checks a DNS server for the predictable-TXID DNS recursion vulnerability. Predictable TXID values can make a DNS server vulnerable to cache poisoning attacks see CVE-2008-1447. The script works by querying txidtest.dns-oarc.net see https://www.dns- oarc.net/oarc/services/txidtest. Be aware that a...

Nmap NSE net: dns-random-txid

This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mac OS X Security Update 2008-005

The remote host is missing Security Update 2008-005. One or more of the following components are affected: Open Scripting Architecture BIND CarbonCore CoreGraphics Data Detectors Engine Disk Utility OpenLDAP OpenSSL PHP QuickLook rsync OpenVAS Vulnerability Test Mac OS X Security Update 2008-005...

Mac OS X 10.5.5 Update / Security Update 2008-006

The remote host is missing Mac OS X 10.5.5 Update / Security Update 2008-006. One or more of the following components are affected: ATS BIND ClamAV Directory Services Finder ImageIO Kernel libresolv Login Window mDNSResponder OpenSSH QuickDraw Manager Ruby SearchKit System Configuration System...

rPSA-2010-0018-1 bind bind-utils caching-nameserver

rPath Security Advisory: 2010-0018-1 Published: 2010-03-15 Products: rPath Appliance Platform Linux Service 1 rPath Appliance Platform Linux Service 2 rPath Linux 1 rPath Linux 2 Rating: Severe Exposure Level Classification: Remote User Deterministic Vulnerability Updated Versions:...

SLES9: Security update for bind

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: bind bind-devel bind-utils For more information, please visit the referenced security advisories. More details may also be found by searching for keyword...

SuSE9 Security Update : bind (YOU Patch Number 12197)

The transaction id and the udp source port used for DNS queries by the bind nameserver were predictable. Attackers could potentially exploit that weakness to manipulate the DNS cache 'DNS cache poisoning', CVE-2008-1447. Additionally the root.hint zone file was updated to contain the new IP numbe...

openSUSE Security Update : dnsmasq (dnsmasq-147)

This update of dnsmasq uses random UDP source ports and a random TRXID now. CVE-2008-1447 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update dnsmasq-147. The text description of this plugin is C...

openSUSE Security Update : bind (bind-82)

The transaction id and the UDP source port used for DNS queries by the bind nameserver were predicatable. Attackers could potentially exploit that weakness to manipulate the DNS cache 'DNS cache poisoning', CVE-2008-1447. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text a...

Mandriva Linux Security Advisory : bind (MDVSA-2008:139)

A weakness was found in the DNS protocol by Dan Kaminsky. A remote attacker could exploit this weakness to spoof DNS entries and poison DNS caches. This could be used to misdirect users and services; i.e. for web and email traffic CVE-2008-1447. This update provides the latest stable BIND release...

Mandriva Update for bind MDVSA-2008:139 (bind)

Check for the Version of bind OpenVAS Vulnerability Test Mandriva Update for bind MDVSA-2008:139 bind Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

RedHat Update for bind RHSA-2008:0533-01

Check for the Version of bind OpenVAS Vulnerability Test RedHat Update for bind RHSA-2008:0533-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

CentOS Update for bind CESA-2008:0533-03 centos2 i386

Check for the Version of bind OpenVAS Vulnerability Test CentOS Update for bind CESA-2008:0533-03 centos2 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...