| Vulnerability Name: | CVE-2008-3217 (CCN-43925) | ||||||||||||||||||||
| Assigned: | 2008-07-16 | ||||||||||||||||||||
| Published: | 2008-07-16 | ||||||||||||||||||||
| Updated: | 2017-08-08 | ||||||||||||||||||||
| Summary: | PowerDNS Recursor before 3.1.6 does not always use the strongest random number generator for source port selection, which makes it easier for remote attack vectors to conduct DNS cache poisoning. Note: this is related to incomplete integration of security improvements associated with addressing CVE-2008-1637. | ||||||||||||||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
| ||||||||||||||||||||
| CVSS v2 Severity: | 6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P) 5.0 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)
| ||||||||||||||||||||
| Vulnerability Type: | CWE-189 | ||||||||||||||||||||
| Vulnerability Consequences: | Other | ||||||||||||||||||||
| References: | Source: MITRE Type: CNA CVE-2008-3217 Source: CONFIRM Type: UNKNOWN http://doc.powerdns.com/changelog.html#CHANGELOG-RECURSOR-3-1-6 Source: SECUNIA Type: UNKNOWN 31311 Source: CCN Type: PowerDNS Web site DOWNLOADS Source: CONFIRM Type: Patch http://wiki.powerdns.com/cgi-bin/trac.fcgi/changeset/1179 Source: DEBIAN Type: DSA-1544 pdns-recursor -- design flaw Source: CCN Type: GLSA-200804-22 PowerDNS Recursor: DNS Cache Poisoning Source: CCN Type: oss-security Mailing List, Wed, 09 Jul 2008 18:51:36 +0200 CVE request: PowerDNS recursor source port randomization Source: MLIST Type: UNKNOWN [oss-security] 20080709 CVE request: PowerDNS recursor source port randomization Source: CCN Type: oss-security Mailing List, Thu, 10 Jul 2008 16:27:33 +0200 DNS vulnerability: other relevant software Source: MLIST Type: UNKNOWN [oss-security] 20080710 Re: DNS vulnerability: other relevant software Source: CCN Type: oss-security Mailing List, Wed, 16 Jul 2008 21:12:44 +0200 CVE request: PowerDNS recursor source port randomization Source: MLIST Type: UNKNOWN [oss-security] 20080716 Re: CVE request: PowerDNS recursor source port randomization Source: BID Type: UNKNOWN 30782 Source: CCN Type: BID-30782 PowerDNS Source Port Randomization Remote Cache Poisoning Vulnerability Source: XF Type: UNKNOWN powerdns-recursor-rng-weak-security(43925) Source: XF Type: UNKNOWN powerdns-recursor-rng-weak-security(43925) Source: FEDORA Type: UNKNOWN FEDORA-2008-6893 | ||||||||||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||||||||||||||
| Oval Definitions | |||||||||||||||||||||
| |||||||||||||||||||||
| BACK | |||||||||||||||||||||