Description
ISC BIND 9 through 9.5.0a5 uses a weak random number generator during generation of DNS query ids when answering resolver questions or sending NOTIFY messages to slave name servers, which makes it easier for remote attackers to guess the next query id and perform DNS cache poisoning.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by posedge · pythonremotemultiple
https://www.exploit-db.com/exploits/4266
References (67)
Core 67
Core References
Various Sources x_refsource_misc
http://www.trusteer.com/docs/bind9dns_s.html
Various Sources x_refsource_misc
http://www.trusteer.com/docs/bind9dns.html
Vendor Advisory vendor-advisory
x_refsource_trustix
http://www.trustix.org/errata/2007/0023/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/35575
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-491-1
Issue Tracking x_refsource_confirm
https://issues.rpath.com/browse/RPL-1587
Various Sources x_refsource_misc
http://www.securiteam.com/securitynews/5VP0L0UM0A.html
Various Sources vendor-advisory
x_refsource_slackware
http://www.slackware.org/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.521385
Various Sources x_refsource_confirm
http://www.isc.org/index.pl?/sw/bind/bind-security.php
Vendor Advisory x_refsource_confirm
http://support.avaya.com/elmodocs2/security/ASA-2007-389.htm
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26231
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2932
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141879471518471&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26847
Various Sources vendor-advisory
x_refsource_aixapar
http://www-1.ibm.com/support/search.wss?rs=0&q=IZ02218&apar=only
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2914
Vendor Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2007-0740.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26217
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26509
Vendor Advisory vendor-advisory
x_refsource_hp
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01174368
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/26444
Vendor Advisory vendor-advisory
x_refsource_hp
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01123426
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26605
Vendor Advisory vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103018-1
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDKSA-2007:149
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26607
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/474856/100/0/threaded
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26148
Various Sources vendor-advisory
x_refsource_freebsd
http://security.freebsd.org/advisories/FreeBSD-SA-07:07.bind.asc
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/252735
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26180
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200708-13.xml
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26152
Various Sources x_refsource_confirm
http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=623903
Mailing List vendor-advisory
x_refsource_apple
http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html
Vendor Advisory x_refsource_confirm
http://docs.info.apple.com/article.html?artnum=307041
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/474516/100/0/threaded
Various Sources vendor-advisory
x_refsource_aixapar
http://www-1.ibm.com/support/search.wss?rs=0&q=IZ02219&apar=only
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2782
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26227
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26261
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/3868
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/25037
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26515
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26330
Vendor Advisory vendor-advisory
x_refsource_hp
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01154600
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1018442
Vendor Advisory vendor-advisory
x_refsource_sgi
ftp://patches.sgi.com/support/free/security/advisories/20070801-01-P.asc
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2007/dsa-1341
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26308
Vendor Advisory vendor-advisory
x_refsource_suse
http://www.novell.com/linux/security/advisories/2007_47_bind.html
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2627
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2226
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/27643
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26236
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2662
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26195
Various Sources x_refsource_confirm
ftp://aix.software.ibm.com/aix/efixes/security/README
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/3242
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10293
Vendor Advisory vendor-advisory
x_refsource_openpkg
http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.022.html
US Government Resource third-party-advisory
x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA07-319A.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26925
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26160
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/474545/100/0/threaded
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/474808/100/0/threaded
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26531
Scores
EPSS
0.2056
EPSS Percentile
95.6%
Details
Status
published
Products (7)
isc/bind
9.0
isc/bind
9.1
isc/bind
9.2
isc/bind
9.3
isc/bind
9.4
isc/bind
9.5
isc/bind
9.5.0
Published
Jul 24, 2007
Tracked Since
Feb 18, 2026