CVE-2008-5133
OpenSolaris < snv_96 - DNS Response Spoofing via ipnat NAT Port Handling
Title source: llmDescription
ipnat in IP Filter in Sun Solaris 10 and OpenSolaris before snv_96, when running on a DNS server with Network Address Translation (NAT) configured, improperly changes the source port of a packet when the destination port is the DNS port, which allows remote attackers to bypass an intended CVE-2008-1447 protection mechanism and spoof the responses to DNS queries sent by named.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/46721
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/32625
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2008/3129
Patch, Vendor Advisory vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-245206-1
Scores
EPSS
0.0031
EPSS Percentile
54.6%
Details
CWE
CWE-264
Status
published
Products (30)
sun/opensolaris
snv_01 (2 CPE variants)
sun/opensolaris
snv_02 (2 CPE variants)
sun/opensolaris
snv_03 (2 CPE variants)
sun/opensolaris
snv_04 (2 CPE variants)
sun/opensolaris
snv_05 (2 CPE variants)
sun/opensolaris
snv_06 (2 CPE variants)
sun/opensolaris
snv_07 (2 CPE variants)
sun/opensolaris
snv_08 (2 CPE variants)
sun/opensolaris
snv_09 (2 CPE variants)
sun/opensolaris
snv_10 (2 CPE variants)
... and 20 more
Published
Nov 18, 2008
Tracked Since
Feb 18, 2026