oval:org.mitre.oval:def:21970
| Definition Id: oval:org.mitre.oval:def:21970 | |||
| Oval ID: | oval:org.mitre.oval:def:21970 | ||
| Title: | ELSA-2008:0533: bind security update (Important) | ||
| Description: | The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referrals to conduct cache poisoning against recursive resolvers, related to insufficient randomness of DNS transaction IDs and source ports, aka "DNS Insufficient Socket Entropy Vulnerability" or "the Kaminsky bug." | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2008:0533-02 CVE-2008-1447 | Version: | 6 |
| Platform(s): | Oracle Linux 5 | Product(s): | bind selinux-policy-targeted selinux-policy |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:15459 | |||
| Oval ID: | oval:org.mitre.oval:def:15459 | ||
| Title: | Oracle Linux 5.x | ||
| Description: | The operating system installed on the system is Oracle Linux 5.x | ||
| Family: | unix | Class: | inventory |
| Reference(s): | cpe:/o:oracle:linux:5 | Version: | 7 |
| Platform(s): | Oracle Linux 5 | Product(s): | |
| Definition Synopsis: | |||
| Referenced By: | |||
| oval:org.mitre.oval:def:21970 | |||
