Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-2930Bind vulnerability

6 documents5 sources
Severity
4.3MEDIUMNVD
EPSS
17.6%
top 4.89%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
ISC Bind
Timeline
PublishedSep 12
Latest updateMay 1

Description

The (1) NSID_SHUFFLE_ONLY and (2) NSID_USE_POOL PRNG algorithms in ISC BIND 8 before 8.4.7-P1 generate predictable DNS query identifiers when sending outgoing queries such as NOTIFY messages when answering questions as a resolver, which allows remote attackers to poison DNS caches via unknown vectors. NOTE: this issue is different from CVE-2007-2926.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDisc/bind8.4.7

Patches

Patch: www.ciac.orgPatch: www.isc.orgPatch: www.kb.cert.org

🔴Vulnerability Details

2
GHSA
GHSA-8m5r-mf8j-3hfx: The (1) NSID_SHUFFLE_ONLY and (2) NSID_USE_POOL PRNG algorithms in ISC BIND 8 before 82022-05-01
CVEList
CVE-2007-2930: The (1) NSID_SHUFFLE_ONLY and (2) NSID_USE_POOL PRNG algorithms in ISC BIND 8 before 82007-09-12

💥Exploits & PoCs

2
Exploit-DB
ISC BIND 8 - Remote Cache Poisoning (1)2007-08-27
Exploit-DB
ISC BIND 8 - Remote Cache Poisoning (2)2007-08-27

📋Vendor Advisories

1
Red Hat
CVE-2007-2930: The (1) NSID_SHUFFLE_ONLY and (2) NSID_USE_POOL PRNG algorithms in ISC BIND 8 before 8
CVE-2007-2930 — ISC Bind vulnerability | cvebase