CVE-2008-3217

2008-07-18 18:41:00 2017-08-08 03:31:41

PowerDNS Recursor before 3.1.6 does not always use the strongest random number generator for source port selection, which makes it easier for remote attack vectors to conduct DNS cache poisoning. NOTE: this is related to incomplete integration of security improvements associated with addressing CVE-2008-1637.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Powerdns Recursor 3.1.5 (not an official CPE) Powerdns Recursor 3.1.4 (not an official CPE) Powerdns Recursor 3.1.2 (not an official CPE) Powerdns Recursor 3.1.1 (not an official CPE) Powerdns Recursor 3.0 (not an official CPE) Powerdns Recursor 3.0.1 (not an official CPE) Powerdns Recursor 3.1.3 (not an official CPE)

Powerdns - Recursor

Advisory	Patch	Confirmed	Link
			FEDORA-2008-6893
			powerdns-recursor-rng-weak-security(43925)
			30782
			[oss-security] 20080716 Re: CVE request: PowerDNS recurs...
			[oss-security] 20080710 Re: DNS vulnerability: other rel...
			[oss-security] 20080709 CVE request: PowerDNS recursor s...
			http://wiki.powerdns.com/cgi-bin/trac.fcgi/changeset/117...
			http://doc.powerdns.com/changelog.html#CHANGELOG-RECURSO...

Numeric Errors (ID 189)

Related CVE(s) 1 CVE-2008-1637 CVSS 6.8