The (1) NSID_SHUFFLE_ONLY and (2) NSID_USE_POOL PRNG algorithms in ISC BIND
8 before 8.4.7-P1 generate predictable DNS query identifiers when sending
outgoing queries such as NOTIFY messages when answering questions as a
resolver, which allows remote attackers to poison DNS caches via unknown
vectors. NOTE: this issue is different from CVE-2007-2926.

References

launchpad.net/bugs/cve/CVE-2007-2930

nvd.nist.gov/vuln/detail/CVE-2007-2930

security-tracker.debian.org/tracker/CVE-2007-2930

www.cve.org/CVERecord?id=CVE-2007-2930

prion 3

cve 3

nessus 67

openvas 33

altlinux 4

oraclelinux 1

debian 2

cert 2

securityvulns 1

checkpoint_advisories 2

fedora 4

suse 1

freebsd 1

ubuntucve 1

freebsd_advisory 1

redhat 1

veracode 1

centos 2

osv 1

ubuntu 1

debiancve 1

f5 2

slackware 1

gentoo 1

prion

Code injection

2007-09-12 01:17:00

Design/Logic Flaw

2007-07-24 17:30:00

Design/Logic Flaw

2007-09-12 01:17:00

cve

CVE-2007-2930

2007-09-12 01:17:00

CVE-2007-2926

2007-07-24 17:30:00

CVE-2007-4019

2007-09-12 01:17:00

nessus

RHEL 2.1 / 3 / 4 / 5 : bind (RHSA-2007:0740)

2007-07-27 00:00:00

Debian DSA-1341-2 : bind9 - design error

2007-08-13 00:00:00

SuSE 10 Security Update : bind,bind-devel,bind-utils (ZYPP Patch Number 3976)

2007-12-13 00:00:00

openvas

FreeBSD Ports: named

2008-09-04 00:00:00

HP-UX Update for BIND HPSBUX02251

2009-05-05 00:00:00

Debian Security Advisory DSA 1341-1 (bind9)

2008-01-17 00:00:00

altlinux

Security fix for the ALT Linux 6 package bind version 9.3.4-alt4

2007-07-24 00:00:00

Security fix for the ALT Linux 8 package bind version 9.3.4-alt4

2007-07-24 00:00:00

Security fix for the ALT Linux 5 package bind version 9.3.4-alt4

2007-07-24 00:00:00

oraclelinux

Moderate: bind security update

2007-07-24 00:00:00

debian

[SECURITY] [DSA 1342-2] New bind9 packages fix DNS cache poisoning

2007-07-26 17:03:40

[SECURITY] [DSA 1341-1] New bind9 packages fix DNS cache poisoning

2007-07-25 21:13:15

cert

ISC BIND generates cryptographically weak DNS query IDs

2007-07-27 00:00:00

BIND version 8 generates cryptographically weak DNS query identifiers

2007-08-28 00:00:00

securityvulns

ertificate spoofing with subjectAltName and domain name wildcards

2007-11-19 00:00:00

checkpoint_advisories

Preemptive Protection against ISC BIND Cache Poisoning Vulnerability

2007-08-16 00:00:00

Security Best Practice: Protect Yourself against DNS Cache Poisoning

2007-08-16 00:00:00

fedora

[SECURITY] Fedora Core 6 Update: bind-9.3.4-7.P1.fc6

2007-07-26 15:35:49

[SECURITY] Fedora 7 Update: bind-9.4.1-7.P1.fc7

2007-07-25 05:15:35

[SECURITY] Fedora 7 Update: bind-9.4.2-2.fc7

2007-12-20 20:14:27

suse

DNS cache poisoning in bind, bind9

2007-08-01 16:07:35

freebsd

FreeBSD -- Predictable query ids in named(8)

2007-07-24 00:00:00

ubuntucve

CVE-2007-2926

2007-07-24 00:00:00

freebsd_advisory

FreeBSD-SA-07:07.bind

2007-08-01 00:00:00

redhat

(RHSA-2007:0740) Moderate: bind security update

2007-07-24 00:00:00

veracode

Denial Of Service (DoS)

2020-04-10 00:15:41

centos

bind, caching security update

2007-07-24 15:48:10

bind security update

2007-07-25 01:16:51

osv

bind9 - DNS cache poisoning vulnerability

2007-07-25 00:00:00

ubuntu

Bind vulnerability

2007-07-25 00:00:00

debiancve

CVE-2007-2926

2007-07-24 17:30:00

K8077 : BIND 8 vulnerability CVE-2007-2930

2013-03-20 00:00:00

SOL8077 - BIND 8 vulnerability CVE-2007-2930

2007-11-05 00:00:00

slackware

[slackware-security] bind

2007-07-26 22:15:41

gentoo

BIND: Weak random number generation

2007-08-18 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.039 Low

EPSS

Percentile

91.9%

JSON

Related for UB:CVE-2007-2930