Vulnerability Description
A certain pseudo-random number generator (PRNG) algorithm that uses ADD with 0 random hops (aka "Algorithm A0"), as used in OpenBSD 3.5 through 4.2 and NetBSD 1.6.2 through 4.0, allows remote attackers to guess sensitive values such as (1) DNS transaction IDs or (2) IP fragmentation IDs by observing a sequence of previously generated values. NOTE: this issue can be leveraged for attacks such as DNS cache poisoning, injection into TCP packets, and OS fingerprinting.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Mac Os X | 10.0 |
| Apple | Mac Os X Server | 10.0 |
| Dragonflybsd | Dragonflybsd | 1.0 |
| Freebsd | Freebsd | 4.4 |
| Netbsd | Netbsd | 1.6.2 |
| Openbsd | Openbsd | 2.6 |
| Cosmicperl | Directory Pro | 10.0.3 |
| Darwin | Darwin | 1.0 |
| Navision | Financials Server | 3.0 |
References
- http://secunia.com/advisories/28819Vendor Advisory
- http://www.securiteam.com/securityreviews/5PP0H0UNGW.html
- http://www.securityfocus.com/archive/1/487658
- http://www.securityfocus.com/bid/27647
- http://www.trusteer.com/docs/OpenBSD_DNS_Cache_Poisoning_and_Multiple_OS_Predict
- https://exchange.xforce.ibmcloud.com/vulnerabilities/40329
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41157
- http://secunia.com/advisories/28819Vendor Advisory
- http://www.securiteam.com/securityreviews/5PP0H0UNGW.html
- http://www.securityfocus.com/archive/1/487658
- http://www.securityfocus.com/bid/27647
- http://www.trusteer.com/docs/OpenBSD_DNS_Cache_Poisoning_and_Multiple_OS_Predict
- https://exchange.xforce.ibmcloud.com/vulnerabilities/40329
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41157
FAQ
What is CVE-2008-1148?
CVE-2008-1148 is a vulnerability with a CVSS score of 6.8 (MEDIUM). A certain pseudo-random number generator (PRNG) algorithm that uses ADD with 0 random hops (aka "Algorithm A0"), as used in OpenBSD 3.5 through 4.2 and NetBSD 1.6.2 through 4.0, allows remote attacker...
How severe is CVE-2008-1148?
CVE-2008-1148 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-1148?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Mac Os X, Apple Mac Os X Server, Dragonflybsd Dragonflybsd, Freebsd Freebsd, Netbsd Netbsd.