CVE-2007-2930
CVE-2007-2930
The (1) NSID_SHUFFLE_ONLY and (2) NSID_USE_POOL PRNG algorithms in ISC BIND 8 before 8.4.7-P1 generate predictable DNS query identifiers when sending outgoing queries such as NOTIFY messages when answering questions as a resolver, which allows remote attackers to poison DNS caches via unknown vectors. NOTE: this issue is different from CVE-2007-2926.
Affected products
n/a · n/apublic PoCs found — 2
exploitdbwww.exploit-db.com/exploits/30535unverifiedexploitdbwww.exploit-db.com/exploits/30536unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01283837http://secunia.com/advisories/26629http://secunia.com/advisories/26858http://secunia.com/advisories/27433http://secunia.com/advisories/27459http://secunia.com/advisories/27465http://secunia.com/advisories/27696https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2154http://sunsolve.sun.com/search/document.do?assetkey=1-26-103063-1http://sunsolve.sun.com/search/document.do?assetkey=1-66-200859-1http://support.avaya.com/elmodocs2/security/ASA-2007-448.htmhttp://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=653968