Sun Solaris 和 OpenSolaris NAT时DNS欺骗漏洞

admin

0
文章

0
评论

2022-07-23 09:07:16 CNNVD漏洞来源：ZONE.CI 全球网 0 阅读模式

漏洞信息详情

Sun Solaris 和 OpenSolaris NAT时DNS欺骗漏洞

CNNVD编号：CNNVD-200811-293
危害等级：中危
CVE编号： CVE-2008-5133
漏洞类型：权限许可和访问控制
发布时间： 2008-07-08
威胁类型：远程
更新时间： 2008-11-18
厂商： sun
漏洞来源： Dan Kaminsky

漏洞简介

DNS协议是TCP/IP协议组的一部分，允许DNS客户端查询DNS数据库将主机名解析为IP地址。

Sun Solaris 10 and OpenSolaris系列产品中IP NAT过滤中,当一个DNS服务器运行了NAT时,不正确的改变了数据包的原地址当目的地址是DNS端口时,将允许远程攻击者跳过 CVE-2008-1447 的安全防护.并欺骗DNS响应返回的地址.

漏洞公告

目前厂商已经发布了升级补丁以修复这个安全问题，补丁下载链接：

Cisco

-----

Cisco已经为此发布了一个安全公告(cisco-sa-20080708-dns)以及相应补丁:

cisco-sa-20080708-dns：Multiple Cisco Products Vulnerable to DNS Cache Poisoning Attacks

链接：http://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.sHTML

Debian

------

Debian已经为此发布了一个安全公告(DSA-1603-1)以及相应补丁:

DSA-1603-1：New bind9 packages fix cache poisoning

链接：http://www.debian.org/security/2008/dsa-1603

补丁下载：

Source archives:

http://security.debian.org/pool/updates/main/b/bind9/bind9_9.3.4-2etch3.dsc

Size/MD5 checksum:897 aeb15f8babb1e6e38367b9f19fea87da

http://security.debian.org/pool/updates/main/b/bind9/bind9_9.3.4.orig.tar.gz

Size/MD5 checksum:4043577 198181d47c58a0a9c0265862cd5557b0

http://security.debian.org/pool/updates/main/b/bind9/bind9_9.3.4-2etch3.diff.gz

Size/MD5 checksum: 302126 521abea46b1104f2251cc398f30af303

Architecture independent packages:

http://security.debian.org/pool/updates/main/b/bind9/bind9-doc_9.3.4-2etch3_all.deb

Size/MD5 checksum: 189560 46ff778db82d2e171d292ecac93ea9b6

alpha architecture (DEC Alpha)

http://security.debian.org/pool/updates/main/b/bind9/libisccc0_9.3.4-2etch3_alpha.deb

Size/MD5 checksum:98154 bbdbcd3d0840f5ffcf4eaddf5a8c253f

http://security.debian.org/pool/updates/main/b/bind9/libbind-dev_9.3.4-2etch3_alpha.deb

Size/MD5 checksum:1407380 ca8995875e76a25de6f32a47f62ea876

http://security.debian.org/pool/updates/main/b/bind9/lwresd_9.3.4-2etch3_alpha.deb

Size/MD5 checksum: 226088 93100774ae6da891caf9fa27a2134cdf

http://security.debian.org/pool/updates/main/b/bind9/libisccfg1_9.3.4-2etch3_alpha.deb

Size/MD5 checksum: 112616 bca5dcca8abff15f4f9cc911f9f94818

http://security.debian.org/pool/updates/main/b/bind9/bind9_9.3.4-2etch3_alpha.deb

Size/MD5 checksum: 322286 677fdcf8e9a8c272a08ed47a79e09209

http://security.debian.org/pool/updates/main/b/bind9/libisc11_9.3.4-2etch3_alpha.deb

Size/MD5 checksum: 190084 87d64554a1cdde9f58cc850f7d5961a1

http://security.debian.org/pool/updates/main/b/bind9/libbind9-0_9.3.4-2etch3_alpha.deb

Size/MD5 checksum:96508 48ba9fc0e884f093e95988bd4e088b9c

http://security.debian.org/pool/updates/main/b/bind9/libdns22_9.3.4-2etch3_alpha.deb

Size/MD5 checksum: 564862 7b23948d7c741d4f287698d28385ce71

http://security.debian.org/pool/updates/main/b/bind9/dnsutils_9.3.4-2etch3_alpha.deb

Size/MD5 checksum: 188742 5dd8024a9864137f4529785fcc9c9231

http://security.debian.org/pool/updates/main/b/bind9/liblwres9_9.3.4-2etch3_alpha.deb

Size/MD5 checksum: 116534 2e7dc9ea95bae40dc396ff504abb03bb

http://security.debian.org/pool/updates/main/b/bind9/bind9-host_9.3.4-2etch3_alpha.deb

Size/MD5 checksum: 115784 b961fd6c797a2d1422ae588bfc25ed9d

amd64 architecture (AMD x86_64 (AMD64))

http://security.debian.org/pool/updates/main/b/bind9/lwresd_9.3.4-2etch3_amd64.deb

Size/MD5 checksum: 224294 4d33744bb92300b061cad41dd8de7ea5

http://security.debian.org/pool/updates/main/b/bind9/libbind-dev_9.3.4-2etch3_amd64.deb

Size/MD5 checksum:1111932 e43ced7eae496d7835247a068bef4a66

http://security.debian.org/pool/updates/main/b/bind9/dnsutils_9.3.4-2etch3_amd64.deb

Size/MD5 checksum: 190742 9e39ced5d3464594b9dda6ce683fc653

http://security.debian.org/pool/updates/main/b/bind9/bind9_9.3.4-2etch3_amd64.deb

Size/MD5 checksum: 319008 e36a35983ebc5061e8669ef7f004a851

http://security.debian.org/pool/updates/main/b/bind9/libdns22_9.3.4-2etch3_amd64.deb

Size/MD5 checksum: 552414 c93c2863bddd5661010ae3472e210aa8

http://security.debian.org/pool/updates/main/b/bind9/libbind9-0_9.3.4-2etch3_amd64.deb

Size/MD5 checksum:95922 f114eb76add0d7dabad1d082d38ccf08

http://security.debian.org/pool/updates/main/b/bind9/bind9-host_9.3.4-2etch3_amd64.deb

Size/MD5 checksum: 117072 a70d1d96ea01aa24fb9642e09133824f

http://security.debian.org/pool/updates/main/b/bind9/libisc11_9.3.4-2etch3_amd64.deb

Size/MD5 checksum: 187646 70372cec3522356dcd00901ea64714d4

http://security.debian.org/pool/updates/main/b/bind9/libisccfg1_9.3.4-2etch3_amd64.deb

Size/MD5 checksum: 111270 6dc6edfcca9fecb28c7e66d31ab14a74

http://security.debian.

参考网址

来源: SUNALERT

名称: 245206

; Patch Information

链接:http://sunsolve.sun.com/search/document.do?assetkey=1-26-245206-1

来源: VUPEN

名称: ADV-2008-3129

链接:http://www.frsirt.com/english/advisories/2008/3129

来源: SECUNIA

名称: 32625

链接:http://secunia.com/advisories/32625

受影响实体

Sun Opensolaris:Snv_47:Sparc
Sun Opensolaris:Snv_48:Sparc
Sun Opensolaris:Snv_60:Sparc
Sun Opensolaris:Snv_61:Sparc
Sun Opensolaris:Snv_58:Sparc

补丁

暂无

特别声明

本站(ZONE.CI)所有文章仅供技术研究，若将其信息做其他用途，由用户承担全部法律及连带责任，本站不承担任何法律及连带责任，请遵守中华人民共和国安全法.

ZONE.CI 全球网 | 安全领域涉猎者-乌云独行地带

咨询加Q：999999999

ZONE.CI 全球网 | 安全领域涉猎者-乌云独行地带

ZONE.CI 全球网安全领域涉猎者-乌云独行地带

ZONE.CI 全球网

Plugins

WordPress

Web前端

设计资源

Sun Solaris 和 OpenSolaris NAT时DNS欺骗漏洞

漏洞信息详情

Sun Solaris 和 OpenSolaris NAT时DNS欺骗漏洞

漏洞简介

漏洞公告

参考网址

受影响实体

补丁

Avaya Communication Manager 多个远程命令执行任务

Microsoft Word智能标签无效长度处理内存破坏漏洞(MS08-042)

Sun Solaris 和 OpenSolaris NAT时DNS欺骗漏洞

Linux Kernel 权限许可和访问控制问题漏洞

Adobe RoboHelp Server帮助错误日志跨站脚本漏洞

ISC BIND 安全特征问题漏洞

HP System Management Homepage (SMH) for Linux and Windows 跨站脚本攻击漏洞

Outlook Web Access for Exchange Server邮件字段跨站脚本漏洞

Microsoft Windows DNS服务器缓存中毒漏洞(MS08-037)

Outlook Web Access for Exchange Server邮件字段跨站脚本漏洞(MS08-039)

ZONE.CI 全球网