Zeus Web Server before 4.3r5 does not use random transaction IDs for DNS requests, which makes it easier for remote attackers to spoof DNS responses.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
http://support.zeus.com/zws/media/docs/4.3/RELEASE_NOTES |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2010-01-20T16:00:00Z
Updated: 2024-09-16T22:15:44.434Z
Reserved: 2010-01-20T00:00:00Z
Link: CVE-2010-0362
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2010-01-20T16:30:00.617
Modified: 2011-05-06T04:00:00.000
Link: CVE-2010-0362
Redhat
No data.