Vulnerability Description
A certain pseudo-random number generator (PRNG) algorithm that uses XOR and 3-bit random hops (aka "Algorithm X3"), as used in OpenBSD 2.8 through 4.2, allows remote attackers to guess sensitive values such as DNS transaction IDs by observing a sequence of previously generated values. NOTE: this issue can be leveraged for attacks such as DNS cache poisoning against OpenBSD's modification of BIND.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Mac Os X | 10.0 |
| Apple | Mac Os X Server | 10.0 |
| Dragonflybsd | Dragonflybsd | 1.0 |
| Freebsd | Freebsd | 4.4 |
| Netbsd | Netbsd | 1.6.2 |
| Openbsd | Openbsd | 2.6 |
| Cosmicperl | Directory Pro | 10.0.3 |
| Darwin | Darwin | 1.0 |
| Navision | Financials Server | 3.0 |
References
- http://secunia.com/advisories/28819
- http://www.securiteam.com/securityreviews/5PP0H0UNGW.html
- http://www.securityfocus.com/archive/1/487658
- http://www.securityfocus.com/bid/27647
- http://www.trusteer.com/docs/OpenBSD_DNS_Cache_Poisoning_and_Multiple_OS_Predict
- https://exchange.xforce.ibmcloud.com/vulnerabilities/40329
- http://secunia.com/advisories/28819
- http://www.securiteam.com/securityreviews/5PP0H0UNGW.html
- http://www.securityfocus.com/archive/1/487658
- http://www.securityfocus.com/bid/27647
- http://www.trusteer.com/docs/OpenBSD_DNS_Cache_Poisoning_and_Multiple_OS_Predict
- https://exchange.xforce.ibmcloud.com/vulnerabilities/40329
FAQ
What is CVE-2008-1146?
CVE-2008-1146 is a vulnerability with a CVSS score of 6.8 (MEDIUM). A certain pseudo-random number generator (PRNG) algorithm that uses XOR and 3-bit random hops (aka "Algorithm X3"), as used in OpenBSD 2.8 through 4.2, allows remote attackers to guess sensitive value...
How severe is CVE-2008-1146?
CVE-2008-1146 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-1146?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Mac Os X, Apple Mac Os X Server, Dragonflybsd Dragonflybsd, Freebsd Freebsd, Netbsd Netbsd.