Vulnerability Note VU#252735
ISC BIND generates cryptographically weak DNS query IDs
ISC (Internet Systems Consortiuim) BIND generates cryptographically weak DNS query IDs which could allow a remote attacker to poison DNS caches.
From the ISC Bind security page:
The DNS query id generation is vulnerable to cryptographic analysis which provides a 1 in 8 chance of guessing the next query id for 50% of the query ids. This can be used to perform cache poisoning by an attacker.
This bug only affects outgoing queries, generated by BIND 9 to answer questions as a resolver, or when it is looking up data for internal uses, such as when sending NOTIFYs to slave name servers.
All users are encouraged to upgrade.
A remote attacker could predict DNS query IDs and respond with arbitrary answers, thus poisoning DNS caches.
Upgrade or Patch
This issue is addressed in ISC BIND 9.2.8-P1, BIND 9.3.4-P1, BIND 9.4.1-P1 or BIND 9.5.0a6. Users who obtain BIND from their operating system vendor should see the systems affected portion of this document for a partial list of affected vendors.
If you are a vendor and your product is affected, let
us know.View More »
|Vendor||Status||Date Notified||Date Updated|
|Debian GNU/Linux||Affected||26 Jul 2007||30 Jul 2007|
|Fujitsu||Affected||26 Jul 2007||01 Oct 2007|
|Internet Software Consortium||Affected||-||27 Jul 2007|
|Openwall GNU/*/Linux||Affected||26 Jul 2007||08 Aug 2007|
|Red Hat, Inc.||Affected||26 Jul 2007||28 Jul 2007|
|Sun Microsystems, Inc.||Affected||26 Jul 2007||03 Aug 2007|
|SUSE Linux||Affected||26 Jul 2007||03 Aug 2007|
|Ubuntu||Affected||26 Jul 2007||06 Aug 2008|
|EMC Corporation||Not Affected||26 Jul 2007||30 Jul 2007|
|Hitachi||Not Affected||26 Jul 2007||30 Jul 2007|
|Apple Computer, Inc.||Unknown||26 Jul 2007||26 Jul 2007|
|Conectiva Inc.||Unknown||26 Jul 2007||26 Jul 2007|
|Cray Inc.||Unknown||26 Jul 2007||26 Jul 2007|
|Engarde Secure Linux||Unknown||26 Jul 2007||26 Jul 2007|
|F5 Networks, Inc.||Unknown||26 Jul 2007||26 Jul 2007|
This vulnerability was reported by ISC who credit Amit Klein from
This document was written by Ryan Giobbi.
24 Jul 2007
Date First Published:
27 Jul 2007
Date Last Updated:
06 Aug 2008
If you have feedback, comments, or additional information about this vulnerability, please send us email.