CVE-2007-2925
Mandriva Linux Security Advisory 2007.149
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
The default access control lists (ACL) in ISC BIND 9.4.0, 9.4.1, and 9.5.0a1 through 9.5.0a5 do not set the allow-recursion and allow-query-cache ACLs, which allows remote attackers to make recursive queries and query the cache.
La lista de control de acceso por defecto (ACL) en ISC BIND 9.4.0, 9.4.1, y 9.5.0a1 hasta 9.5.0a5 no asigna las ACLs allow-recursion y allow-query-cache, lo cual permite a atacantes remotos realizar consultas recursivas y consultar la cache.
The DNS query id generation code in BIND9 is vulnerable to cryptographic analysis which provides a 1-in-8 change of guessing the next query ID for 50% of the query IDs, which could be used by a remote attacker to perform cache poisoning by an attacker. As well, in BIND9 9.4.x, the default ACLs were note being correctly set, which could allow anyone to make recursive queries and/or query the cache contents.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2007-05-30 CVE Reserved
- 2007-07-24 CVE Published
- 2024-08-07 CVE Updated
- 2025-06-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (15)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/26227 | Third Party Advisory | |
| http://secunia.com/advisories/26236 | Third Party Advisory | |
| http://secunia.com/advisories/26509 | Third Party Advisory | |
| http://secunia.com/advisories/26515 | Third Party Advisory | |
| http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=623903 | X_refsource_confirm | |
| http://www.isc.org/index.pl?/sw/bind/bind-security.php | X_refsource_confirm | |
| http://www.securityfocus.com/bid/25076 | Vdb Entry | |
| http://www.securitytracker.com/id?1018441 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2007/2628 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2007/2914 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/35571 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | 9.4.0 Search vendor "Isc" for product "Bind" and version "9.4.0" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | 9.4.1 Search vendor "Isc" for product "Bind" and version "9.4.1" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | 9.5.0 Search vendor "Isc" for product "Bind" and version "9.5.0" | - |
Affected
| ||||||