CVE-2002-2213

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2002-2213
The DNS resolver in unspecified versions of Infoblox DNS One, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed responses, which increases the possibility of successfully spoofing a response in a way that is more efficient than brute force methods.

5.0 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References
Link Resource
http://www.imconf.net/imw-2002/imw2002-papers/198.pdf
http://www.kb.cert.org/vuls/id/457875 US Government Resource
http://www.kb.cert.org/vuls/id/IAFY-5FDPYJ
http://www.rnp.br/cais/alertas/2002/cais-ALR-19112002a.html Patch
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:infoblox:dns_one:*:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:4.9:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:4.9.2:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:4.9.3:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:4.9.4:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:4.9.5:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:4.9.5:p1:*:*:*:*:*:*
cpe:2.3:a:isc:bind:4.9.6:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:4.9.7:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:4.9.8:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:4.9.9:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:4.9.10:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.2:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.2.1:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.2.2:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.2.2:p1:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.2.2:p2:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.2.2:p3:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.2.2:p4:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.2.2:p5:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.2.2:p6:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.2.2:p7:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.2.3:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.2.4:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.2.5:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.2.6:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.2.7:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.3.0:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.3.1:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.3.2:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.3.3:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:8.3.4:*:*:*:*:*:*:*
History

No history.

Information

Published : 2002-12-31 05:00

Updated : 2024-02-28 10:24

NVD link : CVE-2002-2213

Mitre link : CVE-2002-2213

CVE.ORG link : CVE-2002-2213

JSON object : View

Products Affected

infoblox

  • dns_one

isc

  • bind
CWE
NVD-CWE-Other

NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024