CVE-2008-5133

ipnat in IP Filter in Sun Solaris 10 and OpenSolaris before snv_96, when running on a DNS server with Network Address Translation (NAT) configured, improperly changes the source port of a packet when the destination port is the DNS port, which allows remote attackers to bypass an intended CVE-2008-1447 protection mechanism and spoof the responses to DNS queries sent by named.

Severity	MEDIUM
CVSS	5.8
CWE	CWE-264
KEV
Published	17 years ago
Modified	3 weeks ago

Related Products

Product	Advisory	Evidence
Cisco PIX/ASA	cisco-sa-20080708-dns	Cisco OpenVuln
Cisco IOS	cisco-sa-20080708-dns	Cisco OpenVuln
Cisco GSS Global Site Selector	cisco-sa-20080708-dns	Cisco OpenVuln
Cisco Firewall Services Module (FWSM)	cisco-sa-20080708-dns	Cisco OpenVuln
Cisco Content Switching Module (CSM)	cisco-sa-20080708-dns	Cisco OpenVuln
Cisco CNS Network Registrar	cisco-sa-20080708-dns	Cisco OpenVuln
Cisco Application and Content Networking System (ACNS) Software	cisco-sa-20080708-dns	Cisco OpenVuln
Application and Content Networking System (ACNS) Software	cisco-sa-20080708-dns	Cisco OpenVuln