CVE-2008-4392 in djbdnsinfo

Summary

dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultaneous identical outbound DNS queries, which makes it easier for remote attackers to spoof DNS responses, as demonstrated by a spoofed A record in the Additional section of a response to a Start of Authority (SOA) query.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

10/02/2008

Disclosure

02/19/2009

Moderation

VulDB entry created

Entries

VDB-46612 (1)

CPE

ready

CWE

CWE-362 (Confirmed)

CVSS

6.5

EPSS

0.00636

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-4392
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-4392
CVE Details	https://www.cvedetails.com/cve/CVE-2008-4392/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!