CVE-2008-5133 — Opensolaris vulnerability

CWE-3104 documents4 sources

Severity

5.8MEDIUMNVD

CNA6.8

EPSS

0.3%

top 45.47%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SUN Opensolaris SUN Solaris

Timeline

PublishedNov 18

Latest updateMay 17

Description

ipnat in IP Filter in Sun Solaris 10 and OpenSolaris before snv_96, when running on a DNS server with Network Address Translation (NAT) configured, improperly changes the source port of a packet when the destination port is the DNS port, which allows remote attackers to bypass an intended CVE-2008-1447 protection mechanism and spoof the responses to DNS queries sent by named.

CVSS vector

AV:N/AC:M/C:N/I:P/A:PExploitability: 8.6 | Impact: 4.9

Affected Packages2 packages

▶NVDsun/opensolarissnv_95+94

▶NVDsun/solaris10

Patches

Patch: sunsolve.sun.com ↗Patch: sunsolve.sun.com ↗

🔴Vulnerability Details

GHSA

GHSA-qxw9-5pqg-5rq6: ipnat in IP Filter in Sun Solaris 10 and OpenSolaris before snv_96, when running on a DNS server with Network Address Translation (NAT) configured, im↗2022-05-17

▶

CVEList

CVE-2008-5133: ipnat in IP Filter in Sun Solaris 10 and OpenSolaris before snv_96, when running on a DNS server with Network Address Translation (NAT) configured, im↗2008-11-18

▶

📋Vendor Advisories

Cisco

Multiple Cisco Products Vulnerable to DNS Cache Poisoning Attacks↗2008-07-08

▶