CVE-2008-4099

PyDNS (aka python-dns) before 2.3.1-4 in Debian GNU/Linux does not use random source ports or transaction IDs for DNS requests, which makes it easier for remote attackers to spoof DNS responses, a different vulnerability than CVE-2008-1447.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:debian:python-dns:2.3.0-2:*:*:*:*:*:*:*
cpe:2.3:a:debian:python-dns:2.3.0-1:*:*:*:*:*:*:*
cpe:2.3:a:debian:python-dns:*:*:*:*:*:*:*:*
cpe:2.3:a:debian:python-dns:2.3.1-2:*:*:*:*:*:*:*
cpe:2.3:a:debian:python-dns:2.3.1-1:*:*:*:*:*:*:*
cpe:2.3:a:debian:python-dns:2.3.0-5.1:*:*:*:*:*:*:*
cpe:2.3:a:debian:python-dns:2.3.0-4:*:*:*:*:*:*:*
cpe:2.3:a:debian:python-dns:2.3.0-6:*:*:*:*:*:*:*
cpe:2.3:a:debian:python-dns:2.3.0-5:*:*:*:*:*:*:*
cpe:2.3:a:debian:python-dns:2.3.0-3:*:*:*:*:*:*:*
cpe:2.3:a:debian:linux:unknown:unknown:etch:*:*:*:*:*

Information

Published : 2008-09-18 10:59

Updated : 2008-09-18 21:00


NVD link : CVE-2008-4099

Mitre link : CVE-2008-4099


JSON object : View

CWE
CWE-16

Configuration

Advertisement

dedicated server usa

Products Affected

debian

  • python-dns
  • linux