CVE-2008-1447

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.debian.org/security/2008/dsa-1603", "name": "DSA-1603", "tags": ["Patch"], "refsource": "DEBIAN"}, {"url": "http://www.debian.org/security/2008/dsa-1604", "name": "DSA-1604", "tags": ["Third Party Advisory"], "refsource": "DEBIAN"}, {"url": "http://www.debian.org/security/2008/dsa-1605", "name": "DSA-1605", "tags": ["Third Party Advisory"], "refsource": "DEBIAN"}, {"url": "http://www.ubuntu.com/usn/usn-622-1", "name": "USN-622-1", "tags": ["Third Party Advisory"], "refsource": "UBUNTU"}, {"url": "http://www.us-cert.gov/cas/techalerts/TA08-190B.html", "name": "TA08-190B", "tags": ["Third Party Advisory", "US Government Resource"], "refsource": "CERT"}, {"url": "http://www.kb.cert.org/vuls/id/800113", "name": "VU#800113", "tags": ["Third Party Advisory", "US Government Resource"], "refsource": "CERT-VN"}, {"url": "http://www.securitytracker.com/id?1020438", "name": "1020438", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://www.securitytracker.com/id?1020440", "name": "1020440", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://www.securitytracker.com/id?1020437", "name": "1020437", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/31207", "name": "31207", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-239392-1", "name": "239392", "tags": ["Third Party Advisory"], "refsource": "SUNALERT"}, {"url": "http://rhn.redhat.com/errata/RHSA-2008-0533.html", "name": "RHSA-2008:0533", "tags": ["Third Party Advisory"], "refsource": "REDHAT"}, {"url": "http://secunia.com/advisories/31237", "name": "31237", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.ibm.com/support/docview.wss?uid=isg1IZ26668", "name": "IZ26668", "tags": ["Third Party Advisory"], "refsource": "AIXAPAR"}, {"url": "http://www.ibm.com/support/docview.wss?uid=isg1IZ26669", "name": "IZ26669", "tags": ["Third Party Advisory"], "refsource": "AIXAPAR"}, {"url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-009.txt.asc", "name": "NetBSD-SA2008-009", "tags": ["Third Party Advisory", "Vendor Advisory"], "refsource": "NETBSD"}, {"url": "http://www.doxpara.com/DMK_BO2K8.ppt", "name": "http://www.doxpara.com/DMK_BO2K8.ppt", "tags": ["Third Party Advisory"], "refsource": "MISC"}, {"url": "http://secunia.com/advisories/30989", "name": "30989", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00458.html", "name": "FEDORA-2008-6281", "tags": ["Third Party Advisory"], "refsource": "FEDORA"}, {"url": "http://secunia.com/advisories/31094", "name": "31094", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://lists.apple.com/archives/security-announce//2008/Jul/msg00003.html", "name": "APPLE-SA-2008-07-31", "tags": ["Mailing List", "Third Party Advisory"], "refsource": "APPLE"}, {"url": "http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0231", "name": "http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0231", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.nominum.com/asset_upload_file741_2661.pdf", "name": "http://www.nominum.com/asset_upload_file741_2661.pdf", "tags": ["Third Party Advisory"], "refsource": "MISC"}, {"url": "http://secunia.com/advisories/31197", "name": "31197", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/31137", "name": "31137", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/31254", "name": "31254", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.securitytracker.com/id?1020561", "name": "1020561", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=494401", "name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=494401", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.vmware.com/security/advisories/VMSA-2008-0014.html", "name": "http://www.vmware.com/security/advisories/VMSA-2008-0014.html", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://marc.info/?l=bugtraq&m=121630706004256&w=2", "name": "SSRT080058", "tags": ["Third Party Advisory"], "refsource": "HP"}, {"url": "http://www.debian.org/security/2008/dsa-1619", "name": "DSA-1619", "tags": ["Third Party Advisory"], "refsource": "DEBIAN"}, {"url": "http://secunia.com/advisories/30988", "name": "30988", "tags": ["Third Party Advisory", "Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/31033", "name": "31033", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.rtpro.yamaha.co.jp/RT/FAQ/Security/VU800113.html", "name": "http://www.rtpro.yamaha.co.jp/RT/FAQ/Security/VU800113.html", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://lists.grok.org.uk/pipermail/full-disclosure/2008-August/064118.html", "name": "20080830 VMSA-2008-0014 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Server, VMware ESX address information disclosure, privilege escalation and other security issues.", "tags": ["Broken Link"], "refsource": "FULLDISC"}, {"url": "http://www.bluecoat.com/support/security-advisories/dns_cache_poisoning", "name": "http://www.bluecoat.com/support/security-advisories/dns_cache_poisoning", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.securitytracker.com/id?1020578", "name": "1020578", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://blog.invisibledenizen.org/2008/07/kaminskys-dns-issue-accidentally-leaked.html", "name": "http://blog.invisibledenizen.org/2008/07/kaminskys-dns-issue-accidentally-leaked.html", "tags": ["Technical Description"], "refsource": "MISC"}, {"url": "http://www.doxpara.com/?p=1176", "name": "http://www.doxpara.com/?p=1176", "tags": ["Third Party Advisory"], "refsource": "MISC"}, {"url": "http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/", "name": "http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/31052", "name": "31052", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://support.citrix.com/article/CTX117991", "name": "http://support.citrix.com/article/CTX117991", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/31169", "name": "31169", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://up2date.astaro.com/2008/08/up2date_7202_released.html", "name": "http://up2date.astaro.com/2008/08/up2date_7202_released.html", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:139", "name": "MDVSA-2008:139", "tags": ["Third Party Advisory"], "refsource": "MANDRIVA"}, {"url": "http://www.openbsd.org/errata43.html#004_bind", "name": "[4.3] 004: SECURITY FIX: July 23, 2008", "tags": ["Third Party Advisory"], "refsource": "OPENBSD"}, {"url": "http://www.ibm.com/support/docview.wss?uid=isg1IZ26667", "name": "IZ26667", "tags": ["Third Party Advisory"], "refsource": "AIXAPAR"}, {"url": "http://secunia.com/advisories/31152", "name": "31152", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.securitytracker.com/id?1020560", "name": "1020560", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/31221", "name": "31221", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/30925", "name": "30925", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/31093", "name": "31093", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/30973", "name": "30973", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/31354", "name": "31354", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.securitytracker.com/id?1020577", "name": "1020577", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://www.ipcop.org/index.php?name=News&file=article&sid=40", "name": "http://www.ipcop.org/index.php?name=News&file=article&sid=40", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/31151", "name": "31151", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/31019", "name": "31019", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://lists.apple.com/archives/security-announce//2008/Sep/msg00003.html", "name": "APPLE-SA-2008-09-09", "tags": ["Mailing List", "Third Party Advisory"], "refsource": "APPLE"}, {"url": "http://www.isc.org/index.pl?/sw/bind/bind-security.php", "name": "http://www.isc.org/index.pl?/sw/bind/bind-security.php", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/31143", "name": "31143", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.kb.cert.org/vuls/id/MIMG-7DWR4J", "name": "http://www.kb.cert.org/vuls/id/MIMG-7DWR4J", "tags": ["Third Party Advisory", "US Government Resource"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/30980", "name": "30980", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.caughq.org/exploits/CAU-EX-2008-0003.txt", "name": "http://www.caughq.org/exploits/CAU-EX-2008-0003.txt", "tags": ["Third Party Advisory"], "refsource": "MISC"}, {"url": "http://secunia.com/advisories/30977", "name": "30977", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00003.html", "name": "SUSE-SA:2008:033", "tags": ["Third Party Advisory"], "refsource": "SUSE"}, {"url": "http://www.securitytracker.com/id?1020575", "name": "1020575", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://www.securitytracker.com/id?1020802", "name": "1020802", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=762152", "name": "http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=762152", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/31451", "name": "31451", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00402.html", "name": "FEDORA-2008-6256", "tags": ["Third Party Advisory"], "refsource": "FEDORA"}, {"url": "http://secunia.com/advisories/31031", "name": "31031", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.452680", "name": "SSA:2008-205-01", "tags": ["Third Party Advisory"], "refsource": "SLACKWARE"}, {"url": "http://www.securityfocus.com/bid/30131", "name": "30131", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "BID"}, {"url": "http://www.ibm.com/support/docview.wss?uid=isg1IZ26672", "name": "IZ26672", "tags": ["Third Party Advisory"], "refsource": "AIXAPAR"}, {"url": "http://secunia.com/advisories/31212", "name": "31212", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/31236", "name": "31236", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.ibm.com/support/docview.wss?uid=isg1IZ26671", "name": "IZ26671", "tags": ["Third Party Advisory"], "refsource": "AIXAPAR"}, {"url": "http://secunia.com/advisories/31209", "name": "31209", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html", "name": "SUSE-SR:2008:017", "tags": ["Third Party Advisory"], "refsource": "SUSE"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-240048-1", "name": "240048", "tags": ["Third Party Advisory"], "refsource": "SUNALERT"}, {"url": "http://security.gentoo.org/glsa/glsa-200807-08.xml", "name": "GLSA-200807-08", "tags": ["Third Party Advisory"], "refsource": "GENTOO"}, {"url": "http://secunia.com/advisories/31011", "name": "31011", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.securitytracker.com/id?1020576", "name": "1020576", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/31326", "name": "31326", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.openbsd.org/errata42.html#013_bind", "name": "[4.2] 013: SECURITY FIX: July 23, 2008", "tags": ["Third Party Advisory"], "refsource": "OPENBSD"}, {"url": "http://www.us-cert.gov/cas/techalerts/TA08-190A.html", "name": "TA08-190A", "tags": ["Third Party Advisory", "US Government Resource"], "refsource": "CERT"}, {"url": "http://www.securitytracker.com/id?1020558", "name": "1020558", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/31014", "name": "31014", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.debian.org/security/2008/dsa-1623", "name": "DSA-1623", "tags": ["Third Party Advisory"], "refsource": "DEBIAN"}, {"url": "http://secunia.com/advisories/31199", "name": "31199", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.securitytracker.com/id?1020579", "name": "1020579", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/31204", "name": "31204", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/31072", "name": "31072", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/30979", "name": "30979", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/30998", "name": "30998", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/31213", "name": "31213", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/31153", "name": "31153", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://security.freebsd.org/advisories/FreeBSD-SA-08:06.bind.asc", "name": "FreeBSD-SA-08:06", "tags": ["Third Party Advisory"], "refsource": "FREEBSD"}, {"url": "http://www.ibm.com/support/docview.wss?uid=isg1IZ26670", "name": "IZ26670", "tags": ["Third Party Advisory"], "refsource": "AIXAPAR"}, {"url": "http://www.unixwiz.net/techtips/iguide-kaminsky-dns-vuln.html", "name": "http://www.unixwiz.net/techtips/iguide-kaminsky-dns-vuln.html", "tags": ["Third Party Advisory"], "refsource": "MISC"}, {"url": "http://secunia.com/advisories/31687", "name": "31687", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html", "name": "APPLE-SA-2008-09-15", "tags": ["Mailing List", "Third Party Advisory"], "refsource": "APPLE"}, {"url": "http://lists.apple.com/archives/security-announce//2008/Sep/msg00004.html", "name": "APPLE-SA-2008-09-12", "tags": ["Mailing List", "Third Party Advisory"], "refsource": "APPLE"}, {"url": "http://support.apple.com/kb/HT3129", "name": "http://support.apple.com/kb/HT3129", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/31588", "name": "31588", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/31900", "name": "31900", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/31882", "name": "31882", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/31823", "name": "31823", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.phys.uu.nl/~rombouts/pdnsd.html", "name": "http://www.phys.uu.nl/~rombouts/pdnsd.html", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.phys.uu.nl/~rombouts/pdnsd/ChangeLog", "name": "http://www.phys.uu.nl/~rombouts/pdnsd/ChangeLog", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.securitytracker.com/id?1020653", "name": "1020653", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://www.securitytracker.com/id?1020651", "name": "1020651", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/31422", "name": "31422", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.redhat.com/support/errata/RHSA-2008-0789.html", "name": "RHSA-2008:0789", "tags": ["Third Party Advisory"], "refsource": "REDHAT"}, {"url": "http://www.securitytracker.com/id?1020548", "name": "1020548", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://support.citrix.com/article/CTX118183", "name": "http://support.citrix.com/article/CTX118183", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/31030", "name": "31030", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.securitytracker.com/id?1020448", "name": "1020448", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/31012", "name": "31012", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.securitytracker.com/id?1020702", "name": "1020702", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://support.apple.com/kb/HT3026", "name": "http://support.apple.com/kb/HT3026", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/31022", "name": "31022", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.caughq.org/exploits/CAU-EX-2008-0002.txt", "name": "http://www.caughq.org/exploits/CAU-EX-2008-0002.txt", "tags": ["Third Party Advisory"], "refsource": "MISC"}, {"url": "http://www.securitytracker.com/id?1020804", "name": "1020804", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.539239", "name": "SSA:2008-191", "tags": ["Third Party Advisory"], "refsource": "SLACKWARE"}, {"url": "http://www.kb.cert.org/vuls/id/MIMG-7ECL8Q", "name": "http://www.kb.cert.org/vuls/id/MIMG-7ECL8Q", "tags": ["Third Party Advisory", "US Government Resource"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/31065", "name": "31065", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.us-cert.gov/cas/techalerts/TA08-260A.html", "name": "TA08-260A", "tags": ["Third Party Advisory", "US Government Resource"], "refsource": "CERT"}, {"url": "http://www.novell.com/support/viewContent.do?externalId=7000912", "name": "http://www.novell.com/support/viewContent.do?externalId=7000912", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.securitytracker.com/id?1020449", "name": "1020449", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://security.gentoo.org/glsa/glsa-200812-17.xml", "name": "GLSA-200812-17", "tags": ["Third Party Advisory"], "refsource": "GENTOO"}, {"url": "http://secunia.com/advisories/33178", "name": "33178", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/31482", "name": "31482", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://marc.info/?l=bugtraq&m=121866517322103&w=2", "name": "HPSBTU02358", "tags": ["Third Party Advisory"], "refsource": "HP"}, {"url": "http://secunia.com/advisories/31430", "name": "31430", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/31495", "name": "31495", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01523520", "name": "HPSBOV02357", "tags": ["Broken Link"], "refsource": "HP"}, {"url": "http://marc.info/?l=bugtraq&m=123324863916385&w=2", "name": "HPSBMP02404", "tags": ["Third Party Advisory"], "refsource": "HP"}, {"url": "http://secunia.com/advisories/33714", "name": "33714", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/33786", "name": "33786", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01662368", "name": "HPSBNS02405", "tags": ["Broken Link"], "refsource": "HP"}, {"url": "http://www.vupen.com/english/advisories/2010/0622", "name": "ADV-2010-0622", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0018", "name": "http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0018", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.vupen.com/english/advisories/2008/2195/references", "name": "ADV-2008-2195", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2019/references", "name": "ADV-2008-2019", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2558", "name": "ADV-2008-2558", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2092/references", "name": "ADV-2008-2092", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2123/references", "name": "ADV-2008-2123", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2113/references", "name": "ADV-2008-2113", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2025/references", "name": "ADV-2008-2025", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2139/references", "name": "ADV-2008-2139", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2029/references", "name": "ADV-2008-2029", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2549", "name": "ADV-2008-2549", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2334", "name": "ADV-2008-2334", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2467", "name": "ADV-2008-2467", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2030/references", "name": "ADV-2008-2030", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2384", "name": "ADV-2008-2384", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2482", "name": "ADV-2008-2482", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2377", "name": "ADV-2008-2377", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2342", "name": "ADV-2008-2342", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2009/0297", "name": "ADV-2009-0297", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2166/references", "name": "ADV-2008-2166", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2466", "name": "ADV-2008-2466", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2055/references", "name": "ADV-2008-2055", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2009/0311", "name": "ADV-2009-0311", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2383", "name": "ADV-2008-2383", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2196/references", "name": "ADV-2008-2196", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2197/references", "name": "ADV-2008-2197", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2050/references", "name": "ADV-2008-2050", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2023/references", "name": "ADV-2008-2023", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2114/references", "name": "ADV-2008-2114", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2051/references", "name": "ADV-2008-2051", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2291", "name": "ADV-2008-2291", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2525", "name": "ADV-2008-2525", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2584", "name": "ADV-2008-2584", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2268", "name": "ADV-2008-2268", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2582", "name": "ADV-2008-2582", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/2052/references", "name": "ADV-2008-2052", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.ubuntu.com/usn/usn-627-1", "name": "USN-627-1", "tags": ["Third Party Advisory"], "refsource": "UBUNTU"}, {"url": "http://security.gentoo.org/glsa/glsa-201209-25.xml", "name": "GLSA-201209-25", "tags": ["Third Party Advisory"], "refsource": "GENTOO"}, {"url": "http://marc.info/?l=bugtraq&m=141879471518471&w=2", "name": "HPSBOV03226", "tags": ["Third Party Advisory"], "refsource": "HP"}, {"url": "http://www.cisco.com/en/US/products/products_security_advisory09186a00809c2168.shtml", "name": "20080708 Multiple Cisco Products Vulnerable to DNS Cache Poisoning Attacks", "tags": ["Third Party Advisory"], "refsource": "CISCO"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43637", "name": "cisco-multiple-dns-cache-poisoning(43637)", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "XF"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43334", "name": "win-dns-client-server-spoofing(43334)", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "XF"}, {"url": "https://www.exploit-db.com/exploits/6130", "name": "6130", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "EXPLOIT-DB"}, {"url": "https://www.exploit-db.com/exploits/6123", "name": "6123", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "EXPLOIT-DB"}, {"url": "https://www.exploit-db.com/exploits/6122", "name": "6122", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "EXPLOIT-DB"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9627", "name": "oval:org.mitre.oval:def:9627", "tags": ["Tool Signature"], "refsource": "OVAL"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5917", "name": "oval:org.mitre.oval:def:5917", "tags": ["Tool Signature"], "refsource": "OVAL"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5761", "name": "oval:org.mitre.oval:def:5761", "tags": ["Tool Signature"], "refsource": "OVAL"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5725", "name": "oval:org.mitre.oval:def:5725", "tags": ["Tool Signature"], "refsource": "OVAL"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12117", "name": "oval:org.mitre.oval:def:12117", "tags": ["Tool Signature"], "refsource": "OVAL"}, {"url": "http://www.securityfocus.com/archive/1/495869/100/0/threaded", "name": "20080830 VMSA-2008-0014 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Server, VMware ESX address information disclosure, privilege escalation and other security issues.", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "BUGTRAQ"}, {"url": "http://www.securityfocus.com/archive/1/495289/100/0/threaded", "name": "20080808 New paper: An Illustrated Guide to the Kaminsky DNS Vulnerability", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "BUGTRAQ"}, {"url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-037", "name": "MS08-037", "tags": ["Patch", "Vendor Advisory"], "refsource": "MS"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referrals to conduct cache poisoning against recursive resolvers, related to insufficient randomness of DNS transaction IDs and source ports, aka \"DNS Insufficient Socket Entropy Vulnerability\" or \"the Kaminsky bug.\""}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-331"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2008-1447", "ASSIGNER": "secure@microsoft.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "baseMetricV3": {"cvssV3": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 4.0, "exploitabilityScore": 2.2}}, "publishedDate": "2008-07-08T23:41Z", "configurations": {"nodes": [{"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:7.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:cisco:ios:12.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:*:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:sp1:*:*:compute_cluster:*:itanium:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:sp1:*:*:datacenter:*:itanium:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:sp1:*:*:enterprise:*:itanium:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:es:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:ws:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:as:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:5:*:client:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:5:*:client_workstation:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_xp:-:-:*:*:professional:*:x64:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:sp1:*:*:storage:*:itanium:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:sp1:*:*:standard:*:itanium:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:compute_cluster:*:itanium:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:datacenter:*:itanium:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:enterprise:*:itanium:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:standard:*:itanium:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:storage:*:itanium:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:compute_cluster:*:x64:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:datacenter:*:x64:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:enterprise:*:x64:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:standard:*:x64:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:storage:*:x64:*", "cpe_name": [], "vulnerable": false}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:isc:bind:4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:isc:bind:8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:isc:bind:9.2.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "operator": "AND", "cpe_match": []}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2020-03-24T18:19Z"}