Threat level definition
Search:
Home
Bugtraq
Vulnerabilities
Mailing Lists
Jobs
Tools
Beta Programs
News
Infocus
Foundations
Microsoft
Unix
IDS
Incidents
Virus
Pen-Test
Firewalls
Columnists
Mailing Lists
Newsletters
Bugtraq
Focus on IDS
Focus on Linux
Focus on Microsoft
Forensics
Pen-test
Security Basics
Vuln Dev
Vulnerabilities
Jobs
Job Opportunities
Resumes
Job Seekers
Employers
Tools
RSS
News
Vulns
Security Research
info
discussion
exploit
solution
references
Multiple Vendor DNS Protocol Insufficient Transaction ID Randomization DNS Spoofing Vulnerability
References:
ISRs available for BIND DNS vulnerability VU#800113
(Sun)
About the security content of Mac OS X v10.5.5 and Security Update 2008-006
(Apple)
Apple DNS Patch Fails To Randomize
(Andrew Storms)
BIND 9.3.5-P2
(ISC)
BIND 9.4.2-P2
(ISC)
BIND 9.5.0-P2
(ISC)
BlueCat Networks Support Services
(BlueCat Networks)
Check Point Software Homepage
(Check Point Software)
djbdns Homepage
(tinydns.org)
DNS Attacks in the Wild
(HD Moore)
DNS Best Practices, Network Protections, and Attack Identification
(Cisco)
DNS Multiple Race Exploiter: DNS Cache Poisoner/Overwriter
(AR)
F5 BIG-IP Homepage
(F5)
F5 FirePass Web Site
(F5)
Homepage
(F5 Software)
Hotfix AG2000_v457 Rev B - Access Gateway Standard Edition 4.5.7
(Citrix)
IMPROVED DNS SPOOFING USING NODE RE-DELEGATION
(Bernhard Mueller
)
Internet System Consortium releases BIND -P2 patches
(US-CERT)
IPCop Home Page
(IPCop)
Microsoft Windows Homepage
(Microsoft )
Multiple vulnerabilities in Ruby
(Ruby)
OpenBSD 4.2 Errata Page
(OpenBSD)
OpenBSD 4.3 Errata Page
(OpenBSD)
pdnsd Changelog
(pdnsd)
Release notice for Ingate Firewall® 4.6.4 and Ingate SIParator® 4.6.4
(Ingate)
Reliable DNS Forgery in 2008 - Kaminskyâ??s Discovery
(darkoz)
Vendor Homepage
(BlueCat Networks)
VMware Homepage
(VMware)
Wind River Homepage
(Wind River)
Yamaha RT Series Routers DNS Cache Poisoning
(Yamaha)
ZoneAlarm Product Page
(Check Point)
[security bulletin] HPSBMP02404 SSRT090014 rev.1 - MPE/iX Running BIND/iX, Remot
(security-alert@hp.com)
[security bulletin] HPSBUX02351 SSRT080058 rev.4 - HP-UX Running BIND, Remote DN
(security-alert@hp.com)
CAU-EX-2008-0002: Kaminsky DNS Cache Poisoning Flaw Exploit
("I\)ruid"
)
Cisco Security Advisory: Multiple Cisco Products Vulnerable to DNS Cache Poisoni
(Cisco Systems Product Security Incident Response Team)
DNS Multiple Race Exploiting Tool
("AR"
)
FreeBSD Security Advisory FreeBSD-SA-08:06.bind
(FreeBSD Security Advisories
)
HPSBUX02351 SSRT080058 rev.1 - HP-UX Running BIND, Remote DNS Cache Poisoning
(security-alert@hp.com)
Microsoft DNS patch KB951748 incompatible with Zonealarm
("Pages-Web.com - Services internet"
)
Tool release: [evilgrade] - Using DNS cache poisoning to exploit poor update imp
("\[ISR\] - Infobyte Security Research"
)
Whitepaper: DNS zone redelegation
(Bernhard Mueller
)
ASA-2008-288 MS08-037 Vulnerabilities in DNS Could Allow Spoofing (953230)
(Avaya)
CERT VU#800113 DNS Cache Poisoning Issue
(ISC)
Cisco Security Advisory: Multiple Cisco Products Vulnerable to DNS Cache Poisoni
(Cisco)
CTX117991 - DNS Cache Poisoning Vulnerabilities in NetScaler
(Citrix)
DNS CACHE POISONING VULNERABILITY (CERT VU#800113)
(Blue Coat Systems)
HPSBMP02404 SSRT090014
(HP)
HPSBNS02405 SSRT071449: rev.1 - HP NonStop Server running BIND, Remote DNS Cache
(HP)
IBM APAR IZ26670
(IBM)
IBM Corporation Information for VU#800113
(US-CERT)
Infoblox Information for VU#800113
(US-CERT)
IPCop 1.4.19 / 1.4.20 released
(IPCop)
Juniper Networks, Inc. Information for VU#800113
(US CERT)
Microsoft Security Advisory (956187) - Increased Threat for DNS Spoofing Vulnera
(Microsoft)
Microsoft Security Bulletin MS08-037 â?? Important
(Microsoft)
Multiple DNS implementations vulnerable to cache poisoning
(Alcatel-Lucent)
Nixu Information for VU#800113
(US-CERT)
Nominum Software Security Advisory NOM-20080708
(Nominum Software)
Nortel Networks Security Advisory 2008009038, Rev 1
(Nortel Networks)
Nortel Response to Microsoft Security Bulletin MS08-037
(Nortel Networks)
RHSA-2008:0533-3 bind security update
(Red Hat)
RHSA-2008:0789-3 dnsmasq security update
(Red Hat)
Solution 239392 : Security Vulnerability in the DNS Protocol may lead to DNS
(Sun)
Solution 240048: Update to Sun Alert 239392 - Security Vulnerability in the DNS
(Sun Microsystems)
Solution 245206: Security Vulnerability in Solaris IP Filter Network Address Tra
(Sun)
Status of CVE-2008-1447 - Multiple DNS implementations vulnerable to cache poiso
(Novell)
This is a security bugfix Up2Date package for the DNS proxy.
(Astaro)
Up2Date 6.314 Released
(Astaro)
UPDATE AIX named DNS Cache Poisoning Vulnerability
(IBM)
Vulnerability in Access Gateway Standard and Advanced Edition Appliance firmware
(Citrix)
Vulnerability Note VU#800113 Multiple DNS implementations vulnerable to cache po
(US-CERT)
Privacy Statement
Copyright 2008, SecurityFocus
