INFORMATION

Name : CVE-2008-3208 First Publication : 2008-07-18
Severity : Medium Last Modification : 2009-01-29

SCORING CVSS v2

Cvss Base Score : 5 Attack Range : Network
Cvss Impact Score : 2.9 Attack Complexity : Low
Cvss Expoit Score : 10 Authentification : None Required

Calculate full CVSS 2.0 Vectors scores

DETAIL

Simple DNS Plus 4.1, 5.0, and possibly other versions before 5.1.101 allows remote attackers to cause a denial of service via multiple DNS reply packets.



CWE COMMON WEAKNESS ENUMERATION

Weakness : CWE-20 - Improper Input Validation (From NVD)
CPE COMMON PLATFORM ENUMERATION (from NVD)


MILW0RM EXPLOITS

6059 : Simple DNS Plus <= 5.0/4.1 Remote Denial of Service Exploit.

OPEN SOURCE VULNERABILTY DATABASE (OSVDB)

47155 : Simple DNS Plus Reply Packet Saturation Remote DoS.


SECONDARY(S) SOURCE(S)


Source : BID
Url : http://www.securityfocus.com/bid/30207

Source : BUGTRAQ
Url : http://www.securityfocus.com/archive/1/archive/1/494304/100/0/threaded

Source : MILW0RM
Url : http://www.milw0rm.com/exploits/6059

Source : MISC
Url : http://www.blackhat.org.il/index.php/simple-dns-plus-5041-remote-denial-of-service-exploit/
Url : http://www.simpledns.com/kb.aspx?kbid=1246

Source : SREASON
Url : http://securityreason.com/securityalert/4011

Source : XF
Url : http://xforce.iss.net/xforce/xfdb/43767