Executive Summary

Informations
NameCVE-2002-2213First vendor Publication2002-12-31
VendorCveLast vendor Modification2008-09-05

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:P/A:N)
Cvss Base Score5Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

The DNS resolver in unspecified versions of Infoblox DNS One, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed responses, which increases the possibility of successfully spoofing a response in a way that is more efficient than brute force methods.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-2213

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1
Application31

Open Source Vulnerability Database (OSVDB)

idDescription
31843Infoblox DNS One DNS Resolver Remote Birthday Attack Cache Poisoning

Sources (Detail)

SourceUrl
CERT-VN http://www.kb.cert.org/vuls/id/457875
CONFIRM http://www.kb.cert.org/vuls/id/IAFY-5FDPYJ
MISC http://www.imconf.net/imw-2002/imw2002-papers/198.pdf
http://www.rnp.br/cais/alertas/2002/cais-ALR-19112002a.html

Alert History

If you want to see full details history, please login or register.
0
DateInformations
2013-05-11 12:15:41
  • Multiple Updates