Lucene search

K
ubuntucveUbuntu.comUB:CVE-2008-3217
HistoryJul 18, 2008 - 12:00 a.m.

CVE-2008-3217

2008-07-1800:00:00
ubuntu.com
ubuntu.com
14

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS

0.008

Percentile

81.5%

PowerDNS Recursor before 3.1.6 does not always use the strongest random
number generator for source port selection, which makes it easier for
remote attack vectors to conduct DNS cache poisoning. NOTE: this is
related to incomplete integration of security improvements associated with
addressing CVE-2008-1637.

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS

0.008

Percentile

81.5%