BlueCat Networks, Inc. Information for VU#800113

Multiple DNS implementations vulnerable to cache poisoning

Status

Affected

Vendor Statement

BlueCat Networks has incorporated the ISC patches related to the cache posisoning vulnerability (CVE-2008-1447, VU#800113) into the following versions of the Adonis DNS/DHCP appliances:

- Adonis v4.1.0.43
- Adonis v5.0.X.X
- Adonis v5.1.0.X
- Adonis v5.1.1.X

Note that most of the patches are not minor version specific and can be applied to any version of the major product branch.  For example, the patch can be applied to v5.1.0.7 and v5.1.0.8.

The patches can be obtained from BlueCat Networks Support, who can be contacted at http://www.bluecatnetworks.com/clientsupport/.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References

None

Addendum

There are no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.