Executive Summary

Informations
NameCVE-2002-2211First vendor Publication2002-12-31
VendorCveLast vendor Modification2018-10-19

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:P/A:N)
Cvss Base Score5Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

BIND 4 and BIND 8, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed responses, which increases the possibility of successfully spoofing a response in a way that is more efficient than brute force methods.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-2211

CPE : Common Platform Enumeration

TypeDescriptionCount
Application31

Open Source Vulnerability Database (OSVDB)

idDescription
25895ISC BIND Cached Recursive Query DoS

Sources (Detail)

SourceUrl
APPLE http://lists.apple.com/archives/Security-announce/2002/Nov/msg00000.html
CERT-VN http://www.kb.cert.org/vuls/id/457875
HP http://www.securityfocus.com/archive/1/434523/100/0/threaded
MISC http://www.imconf.net/imw-2002/imw2002-papers/198.pdf
http://www.kb.cert.org/vuls/id/IAFY-5FDPYP
http://www.kb.cert.org/vuls/id/IAFY-5FDT4U
http://www.kb.cert.org/vuls/id/IAFY-5FZSLQ
http://www.rnp.br/cais/alertas/2002/cais-ALR-19112002a.html
VUPEN http://www.vupen.com/english/advisories/2006/1923

Alert History

If you want to see full details history, please login or register.
0
1
2
DateInformations
2018-10-19 21:19:34
  • Multiple Updates
2016-04-26 12:26:45
  • Multiple Updates
2013-05-11 12:15:41
  • Multiple Updates