CVE-2008-3217
First published: Fri Jul 18 2008(Updated: )
PowerDNS Recursor before 3.1.6 does not always use the strongest random number generator for source port selection, which makes it easier for remote attack vectors to conduct DNS cache poisoning. NOTE: this is related to incomplete integration of security improvements associated with addressing CVE-2008-1637.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| PowerDNS Recursor | =3.1.2 | |
| PowerDNS Recursor | =3.0 | |
| PowerDNS Recursor | =3.1.1 | |
| PowerDNS Recursor | =3.0.1 | |
| PowerDNS Recursor | =3.1.3 | |
| PowerDNS Recursor | =3.1.4 | |
| PowerDNS Recursor | <=3.1.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.openwall.com/lists/oss-security/2008/07/09/10
- http://www.openwall.com/lists/oss-security/2008/07/10/6
- http://www.openwall.com/lists/oss-security/2008/07/16/12
- http://doc.powerdns.com/changelog.html#CHANGELOG-RECURSOR-3-1-6
- http://wiki.powerdns.com/cgi-bin/trac.fcgi/changeset/1179
- http://www.securityfocus.com/bid/30782
- https://www.redhat.com/archives/fedora-package-announce/2008-July/msg01353.html
- http://secunia.com/advisories/31311
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43925
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/type
- agent/description
- agent/event
- agent/softwarecombine
- agent/remedy
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/powerdns
- canonical/powerdns recursor
- version/powerdns recursor/3.1.2
- version/powerdns recursor/3.0
- version/powerdns recursor/3.1.1
- version/powerdns recursor/3.0.1
- version/powerdns recursor/3.1.3
- version/powerdns recursor/3.1.4
- version/powerdns recursor/3.1.5