QwikSec

Security Database

CVE

CWE

Training

CVE-2008-1148

Published: Mar 4, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

A certain pseudo-random number generator (PRNG) algorithm that uses ADD with 0 random hops (aka "Algorithm A0"), as used in OpenBSD 3.5 through 4.2 and NetBSD 1.6.2 through 4.0, allows remote attackers to guess sensitive values such as (1) DNS transaction IDs or (2) IP fragmentation IDs by observing a sequence of previously generated values. NOTE: this issue can be leveraged for attacks such as DNS cache poisoning, injection into TCP packets, and OS fingerprinting.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20080206 A paper by Amit Klein (Trusteer): "OpenBSD DNS Cache Poisoning and Multiple O/S Predictable IP ID Vulnerability"

mailing-list

x_refsource_BUGTRAQ

openbsd-add-weak-security(41157)

vdb-entry

x_refsource_XF

third-party-advisory

x_refsource_SECUNIA

http://www.trusteer.com/docs/OpenBSD_DNS_Cache_Poisoning_and_Multiple_OS_Predictable_IP_ID_Vulnerability.pdf

x_refsource_MISC

http://www.securiteam.com/securityreviews/5PP0H0UNGW.html

x_refsource_MISC

openbsd-prng-dns-spoofing(40329)

vdb-entry

x_refsource_XF

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

CVE-2008-1148 - Security Vulnerability | QwikSec