Exploitation Summary
EIP tracks 1 public exploit for CVE-2007-2926. PoCs published by posedge.
AI-analyzed exploit summary This exploit demonstrates DNS cache poisoning by predicting transaction IDs in BIND 9 DNS servers. It implements a DNS server that responds to queries and attempts to predict the next transaction ID based on the LFSR algorithm described in Amit Klein's paper.
Description
ISC BIND 9 through 9.5.0a5 uses a weak random number generator during generation of DNS query ids when answering resolver questions or sending NOTIFY messages to slave name servers, which makes it easier for remote attackers to guess the next query id and perform DNS cache poisoning.
Exploits (1)
This exploit demonstrates DNS cache poisoning by predicting transaction IDs in BIND 9 DNS servers. It implements a DNS server that responds to queries and attempts to predict the next transaction ID based on the LFSR algorithm described in Amit Klein's paper.