Vulnerability Description
PowerDNS Recursor before 3.1.5 uses insufficient randomness to calculate (1) TRXID values and (2) UDP source port numbers, which makes it easier for remote attackers to poison a DNS cache, related to (a) algorithmic deficiencies in rand and random functions in external libraries, (b) use of a 32-bit seed value, and (c) choice of the time of day as the sole seeding information.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Powerdns | Recursor | <= 3.1.4 |
Related Weaknesses (CWE)
References
- http://doc.powerdns.com/changelog.html
- http://doc.powerdns.com/powerdns-advisory-2008-01.htmlExploitPatch
- http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00001.html
- http://secunia.com/advisories/29584ExploitVendor Advisory
- http://secunia.com/advisories/29737
- http://secunia.com/advisories/29764
- http://secunia.com/advisories/29830
- http://secunia.com/advisories/30581
- http://security.gentoo.org/glsa/glsa-200804-22.xml
- http://www.debian.org/security/2008/dsa-1544
- http://www.securityfocus.com/archive/1/490330/100/0/threaded
- http://www.securityfocus.com/bid/28517
- http://www.trusteer.com/docs/PowerDNS_recursor_DNS_Cache_Poisoning.pdfExploit
- http://www.trusteer.com/docs/powerdnsrecursor.htmlExploit
- http://www.vupen.com/english/advisories/2008/1046/references
FAQ
What is CVE-2008-1637?
CVE-2008-1637 is a vulnerability with a CVSS score of 6.8 (MEDIUM). PowerDNS Recursor before 3.1.5 uses insufficient randomness to calculate (1) TRXID values and (2) UDP source port numbers, which makes it easier for remote attackers to poison a DNS cache, related to ...
How severe is CVE-2008-1637?
CVE-2008-1637 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-1637?
Check the references section above for vendor advisories and patch information. Affected products include: Powerdns Recursor.