QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2007-3377

Back to search

CVE-2007-3377

Published: Jun 25, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Header.pm in Net::DNS before 0.60, a Perl module, (1) generates predictable sequence IDs with a fixed increment and (2) can use the same starting ID for all child processes of a forking server, which allows remote attackers to spoof DNS responses, as originally reported for qpsmtp and spamassassin.

VendorProductVersions

n/a

n/a

affected
n/a

References

26231
third-party-advisory
x_refsource_SECUNIA
26417
third-party-advisory
x_refsource_SECUNIA
29354
third-party-advisory
x_refsource_SECUNIA
26014
third-party-advisory
x_refsource_SECUNIA
RHSA-2007:0675
vendor-advisory
x_refsource_REDHAT
oval:org.mitre.oval:def:9904
vdb-entry
signature
x_refsource_OVAL
26012
third-party-advisory
x_refsource_SECUNIA
DSA-1515
vendor-advisory
x_refsource_DEBIAN
SUSE-SR:2007:017
vendor-advisory
x_refsource_SUSE
26543
third-party-advisory
x_refsource_SECUNIA
USN-483-1
vendor-advisory
x_refsource_UBUNTU
2007-0023
vendor-advisory
x_refsource_TRUSTIX
MDKSA-2007:146
vendor-advisory
x_refsource_MANDRIVA
RHSA-2007:0674
vendor-advisory
x_refsource_REDHAT
26055
third-party-advisory
x_refsource_SECUNIA
26211
third-party-advisory
x_refsource_SECUNIA
37053
vdb-entry
x_refsource_OSVDB
26075
third-party-advisory
x_refsource_SECUNIA
1018377
vdb-entry
x_refsource_SECTRACK
26508
third-party-advisory
x_refsource_SECUNIA
24669
vdb-entry
x_refsource_BID
25829
third-party-advisory
x_refsource_SECUNIA
GLSA-200708-06
vendor-advisory
x_refsource_GENTOO
20070717 rPSA-2007-0142-1 perl-Net-DNS
mailing-list
x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now