Lucene search
Copyright (C) 2008 E-Soft Inc.OPENVAS:136141256231061383HistorySep 24, 2008 - 12:00 a.m.
Gentoo Security Advisory GLSA 200807-08 (bind)
2008-09-2400:00:00
Copyright (C) 2008 E-Soft Inc.
plugins.openvas.org
3
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
CVSS3
6.8
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N
AI Score
7.2
Confidence
High
EPSS
0.118
Percentile
95.4%
The remote host is missing updates announced in
advisory GLSA 200807-08.
# SPDX-FileCopyrightText: 2008 E-Soft Inc.
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.61383");
script_version("2023-07-19T05:05:15+0000");
script_tag(name:"last_modification", value:"2023-07-19 05:05:15 +0000 (Wed, 19 Jul 2023)");
script_tag(name:"creation_date", value:"2008-09-24 21:14:03 +0200 (Wed, 24 Sep 2008)");
script_cve_id("CVE-2008-1447");
script_tag(name:"cvss_base", value:"5.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:P/A:N");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2020-03-24 18:19:00 +0000 (Tue, 24 Mar 2020)");
script_name("Gentoo Security Advisory GLSA 200807-08 (bind)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2008 E-Soft Inc.");
script_family("Gentoo Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/gentoo", "ssh/login/pkg");
script_tag(name:"insight", value:"A weakness in the DNS protocol has been reported, which could lead to cache
poisoning on recursive resolvers.");
script_tag(name:"solution", value:"All BIND users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=net-dns/bind-9.4.2_p1'
Note: In order to utilize the query port randomization to mitigate the
weakness, you need to make sure that your network setup allows the DNS
server to use random source ports for query and that you have not set a
fixed query port via the 'query-source port' directive in the BIND
configuration.");
script_xref(name:"URL", value:"http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200807-08");
script_xref(name:"URL", value:"http://bugs.gentoo.org/show_bug.cgi?id=231201");
script_tag(name:"summary", value:"The remote host is missing updates announced in
advisory GLSA 200807-08.");
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("pkg-lib-gentoo.inc");
include("revisions-lib.inc");
res = "";
report = "";
report = "";
if ((res = ispkgvuln(pkg:"net-dns/bind", unaffected: make_list("ge 9.4.2_p1"), vulnerable: make_list("lt 9.4.2_p1"))) != NULL) {
report += res;
}
if (report != "") {
security_message(data:report);
} else if (__pkg_match) {
exit(99);
}
Related
openvas
openvas
Oracle: Security Advisory (ELSA-2008-0789)
2015-10-08 00:00:00
Mandriva Update for bind MDVSA-2008:139 (bind)
2009-04-09 00:00:00
CentOS Update for bind CESA-2008:0533 centos4 i386
2009-02-27 00:00:00
seebug
seebug
BIND 9.4.1-9.4.2 Remote DNS Cache Poisoning Flaw Exploit (py)
2008-07-24 00:00:00
BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (c)
2008-07-26 00:00:00
BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (py)
2008-07-24 00:00:00
debian
debian
[SECURITY] [DSA 1619-1] New python-dns packages fix DNS response spoofing
2008-07-27 09:36:54
[SECURITY] [DSA 1605-1] DNS vulnerability impact on the libc stub resolver
2008-07-08 17:05:29
[SECURITY] [DSA 1619-1] New python-dns packages fix DNS response spoofing
2008-07-27 09:36:54
altlinux
altlinux
Security fix for the ALT Linux 5 package bind version 9.3.5-alt2
2008-06-06 00:00:00
Security fix for the ALT Linux 5 package ruby version 1.8.7-alt6
2008-08-12 00:00:00
Security fix for the ALT Linux 6 package bind version 9.3.5-alt2
2008-06-06 00:00:00
exploitpack
exploitpack
BIND 9.4.1 9.4.2 - Remote DNS Cache Poisoning (Metasploit)
2008-07-23 00:00:00
BIND 9.x - Remote DNS Cache Poisoning (Python)
2008-07-24 00:00:00
BIND 9.x - Remote DNS Cache Poisoning
2008-07-25 00:00:00
metasploit
metasploit
DNS BailiWicked Host Attack
2009-07-17 20:36:40
DNS BailiWicked Domain Attack
2008-12-19 07:11:08
nessus
nessus
Scientific Linux Security Update : dnsmasq on SL5.x i386/x86_64
2012-08-01 00:00:00
Ubuntu 8.04 LTS : dnsmasq vulnerability (USN-627-1)
2008-07-23 00:00:00
Oracle Linux 5 : dnsmasq (ELSA-2008-0789)
2013-07-12 00:00:00
rubygems
rubygems
ruby -- DNS spoofing vulnerability in resolv.rb
2008-05-04 20:00:00
ruby -- DNS spoofing vulnerability in resolv.rb
2008-05-04 20:00:00
f5
f5
K8938 : BIND DNS cache poisoning vulnerability - CVE-2008-1447 - VU#800113
2013-03-19 00:00:00
SOL8938 - BIND DNS cache poisoning vulnerability - CVE-2008-1447 - VU#800113
2008-07-10 00:00:00
freebsd
freebsd
FreeBSD -- DNS cache poisoning
2008-07-08 00:00:00
ruby -- DNS spoofing vulnerability
2008-08-08 00:00:00
securityvulns
securityvulns
Cisco Security Advisory: Multiple Cisco Products Vulnerable to DNS Cache Poisoning Attacks
2008-07-12 00:00:00
[SECURITY] [DSA 1619-1] New python-dns packages fix DNS response spoofing
2008-07-29 00:00:00
CAU-EX-2008-0002: Kaminsky DNS Cache Poisoning Flaw Exploit
2008-07-25 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: bind-9.5.0-33.P1.fc9
2008-07-09 21:45:32
[SECURITY] Fedora 9 Update: dnsmasq-2.45-1.fc9
2009-02-14 22:11:22
[SECURITY] Fedora 9 Update: bind-9.5.1-1.P1.fc9
2009-01-15 02:51:25
redhat
redhat
(RHSA-2008:0533) Important: bind security update
2008-07-08 00:00:00
(RHSA-2008:0789) Moderate: dnsmasq security update
2008-08-11 00:00:00
oraclelinux
oraclelinux
dnsmasq security update
2008-08-11 00:00:00
bind security update
2008-07-08 00:00:00
prion
prion
cve
cve
slackware
slackware
[slackware-security] ruby
2008-11-29 21:37:03
[slackware-security] bind
2008-07-10 04:29:01
[slackware-security] dnsmasq
2008-07-24 00:02:47
checkpoint_advisories
checkpoint_advisories
ubuntu
ubuntu
Bind vulnerability
2008-07-08 00:00:00
Dnsmasq vulnerability
2008-07-22 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-08:06.bind
2008-07-13 00:00:00
osv
osv
refpolicy - incompatible policy
2008-07-25 00:00:00
bind9 - cache poisoning
2008-07-08 00:00:00
debiancve
debiancve
cvelist
cvelist
gentoo
gentoo
BIND: Cache poisoning
2008-07-11 00:00:00
pdnsd: Denial of Service and cache poisoning
2009-01-11 00:00:00
dnsmasq: Denial of Service and DNS spoofing
2008-09-04 00:00:00
packetstorm
packetstorm
bailiwicked_domain.rb.txt
2008-07-24 00:00:00
bind9x-poison.txt
2008-07-25 00:00:00
bailiwicked_host.rb.txt
2008-07-24 00:00:00
suse
suse
DNS cache poisoning in bind
2008-07-11 09:57:52
ubuntucve
ubuntucve
checkpoint_security
checkpoint_security
Check Point response to DNS poisoning vulnerability CVE-2008-1447
2008-07-05 21:00:00
centos
centos
bind security update
2008-07-09 01:20:56
bind, caching, selinux security update
2008-07-08 22:25:27
nvd
nvd
mskb
mskb
MS08-037: Vulnerabilities in DNS could allow spoofing
2018-04-17 19:03:20
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
CVSS3
6.8
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N
AI Score
7.2
Confidence
High
EPSS
0.118
Percentile
95.4%
Related for OPENVAS:136141256231061383