What is the severity of CVE-2015-8262?

CVE-2015-8262 is classified as a medium severity vulnerability due to the potential for remote attackers to spoof DNS responses.

How do I fix CVE-2015-8262?

To mitigate CVE-2015-8262, update the firmware of your Buffalo WZR-600DHP2 device to a version that is not affected by this vulnerability.

What devices are affected by CVE-2015-8262?

CVE-2015-8262 affects Buffalo WZR-600DHP2 devices running firmware versions 2.09, 2.13, and 2.16.

Can CVE-2015-8262 be exploited remotely?

Yes, CVE-2015-8262 can be exploited remotely by attackers who can predict the ID value in DNS query headers.

What types of attacks are possible due to CVE-2015-8262?

CVE-2015-8262 can allow for DNS spoofing attacks, where an attacker can send false DNS responses to redirect users.

Vulnerability/
CVE-2015-8262

medium

6.8

27/12/2015

6/8/2024

CVE-2015-8262

First published: Sun Dec 27 2015(Updated: )

Buffalo WZR-600DHP2 devices with firmware 2.09, 2.13, and 2.16 use an improper algorithm for selecting the ID value in the header of a DNS query, which makes it easier for remote attackers to spoof responses by predicting this value.

Credit: cret@cert.org

Affected Software	Affected Version	How to fix
Buffalotech Airstation Extreme N600 Firmware	=2.09
Buffalotech Airstation Extreme N600 Firmware	=2.13
Buffalotech Airstation Extreme N600 Firmware	=2.16
Buffalotech Airstation Extreme N600 Firmware

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-8262?
CVE-2015-8262 is classified as a medium severity vulnerability due to the potential for remote attackers to spoof DNS responses.
How do I fix CVE-2015-8262?
To mitigate CVE-2015-8262, update the firmware of your Buffalo WZR-600DHP2 device to a version that is not affected by this vulnerability.
What devices are affected by CVE-2015-8262?
CVE-2015-8262 affects Buffalo WZR-600DHP2 devices running firmware versions 2.09, 2.13, and 2.16.
Can CVE-2015-8262 be exploited remotely?
Yes, CVE-2015-8262 can be exploited remotely by attackers who can predict the ID value in DNS query headers.
What types of attacks are possible due to CVE-2015-8262?
CVE-2015-8262 can allow for DNS spoofing attacks, where an attacker can send false DNS responses to redirect users.

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/severity
agent/last-modified-date
agent/description
agent/event
agent/first-publish-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/buffalotech
canonical/buffalotech airstation extreme n600 firmware
version/buffalotech airstation extreme n600 firmware/2.09
version/buffalotech airstation extreme n600 firmware/2.13
version/buffalotech airstation extreme n600 firmware/2.16

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Frequently Asked Questions

What is the severity of CVE-2015-8262?
CVE-2015-8262 is classified as a medium severity vulnerability due to the potential for remote attackers to spoof DNS responses.
How do I fix CVE-2015-8262?
To mitigate CVE-2015-8262, update the firmware of your Buffalo WZR-600DHP2 device to a version that is not affected by this vulnerability.
What devices are affected by CVE-2015-8262?
CVE-2015-8262 affects Buffalo WZR-600DHP2 devices running firmware versions 2.09, 2.13, and 2.16.
Can CVE-2015-8262 be exploited remotely?
Yes, CVE-2015-8262 can be exploited remotely by attackers who can predict the ID value in DNS query headers.
What types of attacks are possible due to CVE-2015-8262?
CVE-2015-8262 can allow for DNS spoofing attacks, where an attacker can send false DNS responses to redirect users.