Executive Summary

Informations
NameCVE-2002-2212First vendor Publication2002-12-31
VendorCveLast vendor Modification2008-09-05

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:P/A:N)
Cvss Base Score5Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

The DNS resolver in unspecified versions of Fujitsu UXP/V, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed responses, which increases the possibility of successfully spoofing a response in a way that is more efficient than brute force methods.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-2212

CPE : Common Platform Enumeration

TypeDescriptionCount
Application31
Hardware1

Open Source Vulnerability Database (OSVDB)

idDescription
31840Fujitsu UXP/V DNS Resolver Remote Birthday Attack Cache Poisoning

Sources (Detail)

SourceUrl
CERT-VN http://www.kb.cert.org/vuls/id/457875
CONFIRM http://www.kb.cert.org/vuls/id/IAFY-5FDT5K
MISC http://www.imconf.net/imw-2002/imw2002-papers/198.pdf
http://www.rnp.br/cais/alertas/2002/cais-ALR-19112002a.html

Alert History

If you want to see full details history, please login or register.
0
DateInformations
2013-05-11 12:15:41
  • Multiple Updates