Multiple Vendor DNS Protocol Insufficient Transaction ID Randomization DNS Spoofing Vulnerability
The vendor has released an advisory along with fixes to address this issue. Please see the references for more information.
NOTE: There are several reports that various firewall and security gateway applications are adversely affected by the changes associated with the fixes for this issue. Some vendors recommend removing the Microsoft patch associated with this issue. Users are advised to use extreme caution and to thoroughly evaluate the impact of removing the patch before doing so.
UPDATE: Microsoft has released an updated advisory detailing known issues with their updates.
UPDATE (August 1, 2008): Reports indicate that the Apple update for OS X 10.4.11 may not fully address this issue; Symantec has not confirmed this. Please see the references for more information.
Microsoft Windows Server 2003 Web Edition SP2
HP TCP/IP Services for OpenVMS Alpha 5.5
HP TCP/IP Services for OpenVMS Alpha 5.4
Microsoft Windows XP Professional x64 Edition
Yukihiro Matsumoto Ruby 1.8.5 -p231
Apple Mac OS X Server 10.5.2
ISC BIND 9.3.1
ISC BIND 9.3.2
ISC BIND 9.3.3
ISC BIND 9.4 a1
ISC BIND 9.4.1