Vulnerability DatabaseCVE-2008-1447
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2008-1447
July 08, 2008
The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referrals to conduct cache poisoning against recursive resolvers, related to insufficient randomness of DNS transaction IDs and source ports, aka "DNS Insufficient Socket Entropy Vulnerability" or "the Kaminsky bug."
Related ResourcesĀ (198)
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0231
http://www.debian.org/security/2008/dsa-1605
http://www.vupen.com/english/advisories/2008/2025/references
http://www.vupen.com/english/advisories/2008/2052/references
http://www.vmware.com/security/advisories/VMSA-2008-0014.html
http://www.ubuntu.com/usn/usn-622-1
http://secunia.com/advisories/31197
http://www.vupen.com/english/advisories/2008/2197/references
http://marc.info/?l=bugtraq&m=121866517322103&w=2
http://www.nominum.com/asset_upload_file741_2661.pdf
http://security.gentoo.org/glsa/glsa-200807-08.xml
https://access.redhat.com/security/cve/CVE-2008-1447
http://www.securitytracker.com/id?1020804
http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=762152
http://secunia.com/advisories/31031
http://www.caughq.org/exploits/CAU-EX-2008-0002.txt
http://www.vupen.com/english/advisories/2008/2123/references
http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.452680
http://secunia.com/advisories/31094
http://secunia.com/advisories/31012
http://sunsolve.sun.com/search/document.do?assetkey=1-26-239392-1
http://secunia.com/advisories/31030
http://www.vupen.com/english/advisories/2008/2055/references
http://www.openbsd.org/errata43.html#004_bind
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=494401
http://www.vupen.com/english/advisories/2008/2467
http://www.doxpara.com/DMK_BO2K8.ppt
http://www.vupen.com/english/advisories/2008/2384
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-037
http://marc.info/?l=bugtraq&m=123324863916385&w=2
http://secunia.com/advisories/31052
http://www.vupen.com/english/advisories/2008/2195/references
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5725
http://www.vupen.com/english/advisories/2008/2019/references
http://www.vupen.com/english/advisories/2008/2549
http://www.vupen.com/english/advisories/2008/2383
http://secunia.com/advisories/30998
http://support.citrix.com/article/CTX118183
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5761
http://www.vupen.com/english/advisories/2008/2377
http://www.kb.cert.org/vuls/id/800113
http://www.ubuntu.com/usn/usn-627-1
http://secunia.com/advisories/31014
http://www.kb.cert.org/vuls/id/MIMG-7ECL8Q
http://www.us-cert.gov/cas/techalerts/TA08-260A.html
http://secunia.com/advisories/31143
http://secunia.com/advisories/31236
http://secunia.com/advisories/31209
http://www.vupen.com/english/advisories/2008/2582
http://www.securitytracker.com/id?1020651
http://www.ibm.com/support/docview.wss?uid=isg1IZ26667
http://support.apple.com/kb/HT3026
http://up2date.astaro.com/2008/08/up2date_7202_released.html
http://www.securitytracker.com/id?1020560
http://security.gentoo.org/glsa/glsa-201209-25.xml
http://secunia.com/advisories/31137
http://secunia.com/advisories/33714
http://www.isc.org/index.pl?/sw/bind/bind-security.php
http://www.vupen.com/english/advisories/2008/2050/references
http://www.debian.org/security/2008/dsa-1619
http://www.vupen.com/english/advisories/2008/2584
http://www.kb.cert.org/vuls/id/MIMG-7DWR4J
http://www.vupen.com/english/advisories/2008/2030/references
http://secunia.com/advisories/31254
http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html
http://sunsolve.sun.com/search/document.do?assetkey=1-26-240048-1
http://www.securitytracker.com/id?1020438
http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0018
http://www.mandriva.com/security/advisories?name=MDVSA-2008:139
http://secunia.com/advisories/31153
http://secunia.com/advisories/33786
http://secunia.com/advisories/31033
http://www.ibm.com/support/docview.wss?uid=isg1IZ26668
http://www.securityfocus.com/bid/30131
http://secunia.com/advisories/31221
http://www.vupen.com/english/advisories/2008/2342
http://www.vupen.com/english/advisories/2008/2291
http://secunia.com/advisories/31588
http://secunia.com/advisories/31687
http://www.vupen.com/english/advisories/2008/2268
http://secunia.com/advisories/30980
http://secunia.com/advisories/31823
https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00402.html
http://www.securitytracker.com/id?1020448
http://www.securitytracker.com/id?1020702
http://secunia.com/advisories/33178
http://blog.invisibledenizen.org/2008/07/kaminskys-dns-issue-accidentally-leaked.html
http://secunia.com/advisories/31326
http://secunia.com/advisories/31072
http://secunia.com/advisories/31065
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9627
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-009.txt.asc
http://www.vupen.com/english/advisories/2008/2023/references
http://www.ibm.com/support/docview.wss?uid=isg1IZ26671
http://www.securitytracker.com/id?1020653
http://www.vupen.com/english/advisories/2009/0297
http://www.redhat.com/support/errata/RHSA-2008-0789.html
http://marc.info/?l=bugtraq&m=121630706004256&w=2
http://rhn.redhat.com/errata/RHSA-2008-0533.html
http://lists.apple.com/archives/security-announce//2008/Sep/msg00003.html
http://www.securitytracker.com/id?1020576
http://secunia.com/advisories/30977
http://www.vupen.com/english/advisories/2008/2466
https://www.exploit-db.com/exploits/6122
http://secunia.com/advisories/31151
http://secunia.com/advisories/30973
http://secunia.com/advisories/30925
http://www.vupen.com/english/advisories/2009/0311
http://secunia.com/advisories/31152
http://secunia.com/advisories/30979
http://www.securitytracker.com/id?1020802
http://www.vupen.com/english/advisories/2008/2525
http://lists.apple.com/archives/security-announce//2008/Sep/msg00004.html
http://www.debian.org/security/2008/dsa-1604
https://exchange.xforce.ibmcloud.com/vulnerabilities/43334
http://www.vupen.com/english/advisories/2008/2166/references
http://www.vupen.com/english/advisories/2008/2092/references
http://secunia.com/advisories/31882
http://www.securitytracker.com/id?1020578
http://secunia.com/advisories/30988
http://www.caughq.org/exploits/CAU-EX-2008-0003.txt
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01662368
http://www.rtpro.yamaha.co.jp/RT/FAQ/Security/VU800113.html
http://www.securityfocus.com/archive/1/495869/100/0/threaded
http://www.vupen.com/english/advisories/2008/2482
http://support.citrix.com/article/CTX117991
http://secunia.com/advisories/31212
http://www.ibm.com/support/docview.wss?uid=isg1IZ26669
https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00458.html
http://secunia.com/advisories/30989
https://www.exploit-db.com/exploits/6130
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5917
http://secunia.com/advisories/31451
http://secunia.com/advisories/31354
http://www.debian.org/security/2008/dsa-1603
http://support.apple.com/kb/HT3129
http://www.securitytracker.com/id?1020577
http://secunia.com/advisories/31022
http://secunia.com/advisories/31213
http://lists.grok.org.uk/pipermail/full-disclosure/2008-August/064118.html
http://www.securitytracker.com/id?1020561
http://www.vupen.com/english/advisories/2008/2114/references
http://www.vupen.com/english/advisories/2008/2196/references
http://www.securitytracker.com/id?1020579
http://secunia.com/advisories/31900
http://secunia.com/advisories/31169
http://www.openbsd.org/errata42.html#013_bind
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01523520
http://www.ibm.com/support/docview.wss?uid=isg1IZ26672
http://www.vupen.com/english/advisories/2010/0622
http://secunia.com/advisories/31204
http://secunia.com/advisories/31093
https://exchange.xforce.ibmcloud.com/vulnerabilities/43637
http://www.phys.uu.nl/~rombouts/pdnsd/ChangeLog
http://secunia.com/advisories/31495
http://www.securitytracker.com/id?1020558
http://www.securitytracker.com/id?1020437
http://www.securityfocus.com/archive/1/495289/100/0/threaded
http://secunia.com/advisories/31019
http://secunia.com/advisories/31430
http://www.ipcop.org/index.php?name=News&file=article&sid=40
http://www.novell.com/support/viewContent.do?externalId=7000912
http://www.vupen.com/english/advisories/2008/2334
http://www.ibm.com/support/docview.wss?uid=isg1IZ26670
http://secunia.com/advisories/31207
http://www.doxpara.com/?p=1176
http://www.securitytracker.com/id?1020440
http://www.us-cert.gov/cas/techalerts/TA08-190A.html
http://www.debian.org/security/2008/dsa-1623
http://www.phys.uu.nl/~rombouts/pdnsd.html
http://www.vupen.com/english/advisories/2008/2051/references
http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00003.html
http://secunia.com/advisories/31422
http://marc.info/?l=bugtraq&m=141879471518471&w=2
http://www.vupen.com/english/advisories/2008/2558
https://people.canonical.com/~ubuntu-security/cve/CVE-2008-1447
http://www.unixwiz.net/techtips/iguide-kaminsky-dns-vuln.html
http://secunia.com/advisories/31482
http://www.bluecoat.com/support/security-advisories/dns_cache_poisoning
http://www.vupen.com/english/advisories/2008/2113/references
http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.539239
http://www.cisco.com/en/US/products/products_security_advisory09186a00809c2168.shtml
http://security.gentoo.org/glsa/glsa-200812-17.xml
http://secunia.com/advisories/31011
http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html
http://secunia.com/advisories/31199
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12117
http://lists.apple.com/archives/security-announce//2008/Jul/msg00003.html
http://www.securitytracker.com/id?1020449
http://security.freebsd.org/advisories/FreeBSD-SA-08:06.bind.asc
http://www.vupen.com/english/advisories/2008/2029/references
http://www.vupen.com/english/advisories/2008/2139/references
http://www.securitytracker.com/id?1020575
http://secunia.com/advisories/31237
http://www.securitytracker.com/id?1020548
http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/
http://www.us-cert.gov/cas/techalerts/TA08-190B.html
https://www.exploit-db.com/exploits/6123
Do you need more information?
Contact Us
CVSS v4
Base Score:
8.9
Attack Vector
NETWORK
Attack Complexity
HIGH
Attack Requirements
NONE
Privileges Required
NONE
User Interaction
NONE
Vulnerable System Confidentiality
NONE
Vulnerable System Integrity
HIGH
Vulnerable System Availability
NONE
Subsequent System Confidentiality
NONE
Subsequent System Integrity
HIGH
Subsequent System Availability
NONE
CVSS v3
Base Score:
6.8
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality
NONE
Integrity
HIGH
Availability
NONE
CVSS v2
Base Score:
5
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
Weakness Type (CWE)
Insufficient Entropy
CWE-331
EPSS
Base Score:
85.89