CVE-2008-1148
published 2008-03-04CVE-2008-1148: A certain pseudo-random number generator (PRNG) algorithm that uses ADD with 0 random hops (aka "Algorithm A0"), as used in OpenBSD 3.5 through 4.2 and NetBSD…
PriorityP427medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
1.42%
69.6th percentile
A certain pseudo-random number generator (PRNG) algorithm that uses ADD with 0 random hops (aka "Algorithm A0"), as used in OpenBSD 3.5 through 4.2 and NetBSD 1.6.2 through 4.0, allows remote attackers to guess sensitive values such as (1) DNS transaction IDs or (2) IP fragmentation IDs by observing a sequence of previously generated values. NOTE: this issue can be leveraged for attacks such as DNS cache poisoning, injection into TCP packets, and OS fingerprinting.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cosmicperl | directory_pro | — | — |
| darwin | darwin | — | — |
| darwin | darwin | — | — |
| navision | financials_server | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://secunia.com/advisories/28819http://www.securiteam.com/securityreviews/5PP0H0UNGW.htmlhttp://www.securityfocus.com/archive/1/487658http://www.securityfocus.com/bid/27647http://www.trusteer.com/docs/OpenBSD_DNS_Cache_Poisoning_and_Multiple_OS_Predictable_IP_ID_Vulnerability.pdfhttps://exchange.xforce.ibmcloud.com/vulnerabilities/40329https://exchange.xforce.ibmcloud.com/vulnerabilities/41157http://secunia.com/advisories/28819http://www.securiteam.com/securityreviews/5PP0H0UNGW.htmlhttp://www.securityfocus.com/archive/1/487658http://www.securityfocus.com/bid/27647http://www.trusteer.com/docs/OpenBSD_DNS_Cache_Poisoning_and_Multiple_OS_Predictable_IP_ID_Vulnerability.pdfhttps://exchange.xforce.ibmcloud.com/vulnerabilities/40329https://exchange.xforce.ibmcloud.com/vulnerabilities/41157
2008-03-04
Published