DNS Cache Poisoning Vulnerability in PowerDNS Recursor by PowerDNS
CVE-2008-3217

Currently unrated

Key Information:

Vendor: Powerdns
Status: Recursor
Vendor: CVE Published:; 18 July 2008

Summary

PowerDNS Recursor prior to version 3.1.6 is susceptible to a vulnerability that arises from the improper use of random number generators during source port selection. This flaw enables remote attackers to exploit the recursor and potentially poison its DNS cache, leading to misguided DNS queries and unauthorized access to sensitive information. The issue is a consequence of incomplete implementation of prior security enhancements related to DNS operations.

References

http://www.openwall.com/lists/oss-security/2008/07/16/12

mailing-listx_refsource_MLIST

http://wiki.powerdns.com/cgi-bin/trac.fcgi/changeset/1179

x_refsource_CONFIRM

http://secunia.com/advisories/31311

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Jul 18, 2008
Vulnerability Reserved
Jul 18, 2008