DNS Query Spoofing Vulnerability in Belkin F9K1102 Routers
CVE-2015-5987

8.6HIGH

Key Information:

Vendor: Zyxel
Status: Gs1900-10HP Firmware
Vendor: CVE Published:; 31 December 2015

Summary

The Belkin F9K1102 router, specifically version 2.10.17, exhibits a flaw in its DNS query handling due to an improper algorithm used for selecting ID values in DNS query headers. This design weakness allows potential attackers to predict the ID value, making it easier to spoof DNS responses. Such vulnerabilities can lead to various attack vectors, including redirecting users to malicious sites or intercepting sensitive data, underscoring the need for robust network security measures.

References

https://www.kb.cert.org/vuls/id/201168

third-party-advisoryx_refsource_CERT-VN

CVSS V3.1

Score:

8.6

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Dec 31, 2015
Vulnerability Reserved
Aug 14, 2015