Multiple Vendor DNS Protocol Insufficient Transaction ID Randomization DNS Spoofing Vulnerability

The vendor has released an advisory along with fixes to address this issue. Please see the references for more information.

NOTE: There are several reports that various firewall and security gateway applications are adversely affected by the changes associated with the fixes for this issue. Some vendors recommend removing the Microsoft patch associated with this issue. Users are advised to use extreme caution and to thoroughly evaluate the impact of removing the patch before doing so.

UPDATE: Microsoft has released an updated advisory detailing known issues with their updates.

UPDATE (August 1, 2008): Reports indicate that the Apple update for OS X 10.4.11 may not fully address this issue; Symantec has not confirmed this. Please see the references for more information.

Microsoft Windows Server 2003 Web Edition SP2

HP TCP/IP Services for OpenVMS Alpha 5.5

HP TCP/IP Services for OpenVMS Alpha 5.4

Microsoft Windows XP Professional x64 Edition

Yukihiro Matsumoto Ruby 1.8.5 -p231

Apple Mac OS X Server 10.5.2

ISC BIND 9.3.1

ISC BIND 9.3.2

ISC BIND 9.3.3

ISC BIND 9.4 a1

ISC BIND 9.4.1


Privacy Statement
Copyright 2010, SecurityFocus