pdns-recursor: weak random number generator
| Package(s): | pdns-recursor | CVE #(s): | CVE-2008-3217 | ||||||||
| Created: | July 31, 2008 | Updated: | August 21, 2008 | ||||||||
| Description: | The PowerDNS Recursor non-authoritative/recursing DNS server has a vulnerability involving a weak random number generator that is used for source port selection. This simplifies the process of generating remote attack vectors for conducting DNS cache poisoning. | ||||||||||
| Alerts: |
| ||||||||||