Nortel Response to ISC:DNS:BIND 9 Vulnerabilities in Default ACL and Weak Query IDs
| Description: |
Before taking any action please ensure that you are viewing the latest official version of this security advisory by referencing http://www.nortel.com/securityadvisories On July 24, 2007, Internet Systems Consortium (ISC) announced 2 new vulnerabilities with their BIND implementation of DNS. Some Nortel products may contain this software as a component. This bulletin provides per-product recommendations for the Nortel products which are potentially affected by these new vulnerabilities. The following 2 vulnerabilities are addressed: 1) BIND 9: allow-query-cache/allow-recursion default acls not set - CVE-2007-2925 The default access control lists (acls) are not being correctly set. If not set anyone can make recursive queries and/or query the cache contents. 2) BIND 9: cryptographically weak query ids - CVE-2007-2926 The DNS query id generation is vulnerable to cryptographic analysis which provides a 1 in 8 chance of guessing the next query id for 50% of the query ids. This can be used to perform cache poisoning by an attacker. This bug only affects outgoing queries, generated by BIND 9 to answer questions as a resolver, or when it is looking up data for internal uses, such as when sending NOTIFYs to slave name servers. All users are encouraged to upgrade. |
| Type: |
Security Advisories |
| Number: |
2007008208, Rev 2 |
| Status: |
Retired |
| Date: |
2007-12-10 |
