Multiple Vendor DNS Cache Corruption Vulnerability

Bugtraq ID: 136
Class: Origin Validation Error
CVE:
Remote: Yes
Local: Unknown
Published: Apr 23 1997 12:00AM
Updated: Apr 23 1997 12:00AM
Credit: Cache corruption theory and attacks are not by any stretch of the imagination 'new'. This technique and particular attack was discovered and publicised by Johannes Erdfelt <johan@BORG.SVENTECH.COM> Wed, 23/1997. This post was spurred by a post from Secure
Vulnerable: Sun SunOS 4.1.4
Sun SunOS 4.1.3 _U1
Sun SunOS 4.1.3
Sun Solaris 2.5.1 _x86
Sun Solaris 2.5.1 _ppc
Sun Solaris 2.5.1
Sun Solaris 2.6_x86
Sun Solaris 2.6
Sun Solaris 2.5_x86
Sun Solaris 2.5
Sun Solaris 2.4_x86
Sun Solaris 2.4
Sun Solaris 2.3
SGI IRIX 6.4
SGI IRIX 6.3
SGI IRIX 6.2
SGI IRIX 6.1
SGI IRIX 6.0.1
SGI IRIX 6.0
SGI IRIX 5.3 XFS
SGI IRIX 5.3
SGI IRIX 5.2
SGI IRIX 5.1
SGI IRIX 5.0.1
SGI IRIX 5.0
SGI IRIX 4.0.5 IPR
SGI IRIX 4.0.5 H
SGI IRIX 4.0.5 G
SGI IRIX 4.0.5 F
SGI IRIX 4.0.5 E
SGI IRIX 4.0.5 D
SGI IRIX 4.0.5 A
SGI IRIX 4.0.5 (IOP)
SGI IRIX 4.0.5
SGI IRIX 4.0.4 T
SGI IRIX 4.0.4 B
SGI IRIX 4.0.4
SGI IRIX 4.0.3
SGI IRIX 4.0.2
SCO Open Server 5.0
NEC UX/4800 (64)
HP HP-UX (VVOS) 10.24
HP HP-UX 10.20
Data General DG/UX 5.4 4.11
BSDI BSD/OS 2.0.1
Not Vulnerable: ISC BIND 8.1.1
ISC BIND 8.1
ISC BIND 4.9.7 -T1B
ISC BIND 4.9.7
+ HP HP-UX 11.0 4
+ HP HP-UX 11.0
+ HP HP-UX 10.24
+ HP HP-UX 10.20
+ HP HP-UX 10.10
ISC BIND 4.9.6


 

Privacy Statement
Copyright 2010, SecurityFocus