Vulnerability Name:

CVE-2008-0087 (CCN-41480)

Assigned:2008-04-08
Published:2008-04-08
Updated:2018-10-30
Summary:The DNS client in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, and Vista uses predictable DNS transaction IDs, which allows remote attackers to spoof DNS responses.
CVSS v3 Severity:6.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:8.8 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:C/A:C)
6.5 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Complete
Availibility (A): Complete
6.4 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N)
4.7 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-287
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2008-0087

Source: CCN
Type: HP Security Bulletin HPSBST02329 SSRT080048 rev.1 HPSBST02329 SSRT080048 rev.1
Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-018 to MS08-025

Source: HP
Type: Mailing List, Third Party Advisory
SSRT080048

Source: CCN
Type: SA29696
Microsoft Windows DNS Client Predictable Transaction ID Vulnerability

Source: SECUNIA
Type: Third Party Advisory
29696

Source: CCN
Type: SECTRACK ID: 1019802
Windows DNS Client Lets Remote Users Spoof the System

Source: CCN
Type: ASA-2008-156
MS08-020 Vulnerability in DNS Client Could Allow Spoofing (945553)

Source: CCN
Type: NORTEL BULLETIN ID: 2008008788, Rev 1
Centrex IP Client Manager (CICM) response to Microsoft April security bulletin

Source: CCN
Type: Microsoft Security Bulletin MS08-020
Vulnerability in DNS Client Could Allow Spoofing (945553)

Source: CCN
Type: Microsoft Security Bulletin MS11-030
Vulnerability in DNS Resolution Could Allow Remote Code Execution (2509553)

Source: BUGTRAQ
Type: UNKNOWN
20080408 Microsoft Windows DNS Stub Resolver Cache Poisoning (MS08-020)

Source: BID
Type: Patch, Third Party Advisory, VDB Entry
28553

Source: CCN
Type: BID-28553
Microsoft Windows DNS Client Service Response Spoofing Vulnerability

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1019802

Source: MISC
Type: Broken Link
http://www.trusteer.com/docs/windowsresolver.html

Source: CERT
Type: Third Party Advisory, US Government Resource
TA08-099A

Source: VUPEN
Type: Broken Link
ADV-2008-1144

Source: MS
Type: UNKNOWN
MS08-020

Source: XF
Type: UNKNOWN
win-dns-client-spoofing(41480)

Source: OVAL
Type: Third Party Advisory
oval:org.mitre.oval:def:5314

Vulnerable Configuration:Configuration 1:
  • cpe:/o:microsoft:windows-nt:xp:sp2:*:*:pro:*:x64:*
  • OR cpe:/o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:*:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:*:sp1:*:*:*:*:itanium:*
  • OR cpe:/o:microsoft:windows_2003_server:*:sp2:*:*:*:*:itanium:*
  • OR cpe:/o:microsoft:windows_2003_server:*:sp2:*:*:*:*:x64:*
  • OR cpe:/o:microsoft:windows_vista:*:*:*:*:*:*:x64:*
  • OR cpe:/o:microsoft:windows_vista:-:*:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/o:microsoft:windows_2000:-:sp4:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:2003_server::x64:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:xp:sp2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:2003_server:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:2003_server:sp1_itanium:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:server_2003:sp2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:server_2003:sp2:itanium:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:server_2003:sp2:x64:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:-:*:x64:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp::sp2:x64:*:professional:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:5314
    V
    DNS Spoofing Attack Vulnerability
    2011-10-31
    BACK
    microsoft windows-nt xp sp2
    microsoft windows 2000 * sp4
    microsoft windows 2003 server * sp1
    microsoft windows 2003 server * sp1
    microsoft windows 2003 server * sp2
    microsoft windows 2003 server * sp2
    microsoft windows vista *
    microsoft windows vista -
    microsoft windows 2000 - sp4
    microsoft windows 2003_server
    microsoft windows xp sp2
    microsoft windows 2003_server sp1
    microsoft windows 2003_server sp1_itanium
    microsoft windows vista *
    microsoft windows server_2003 sp2
    microsoft windows server_2003 sp2
    microsoft windows server_2003 sp2
    microsoft windows vista -
    microsoft windows xp sp2