{"cve":{"cve_id":"CVE-2008-1447","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.95182,"epss_percentile":0.99854,"epss_as_of":"2026-06-23","description":"The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referrals to conduct cache poisoning against recursive resolvers, related to insufficient randomness of DNS transaction IDs and source ports, aka \"DNS Insufficient Socket Entropy Vulnerability\" or \"the Kaminsky bug.\"","published_at":"2008-07-08T23:00:00Z","last_modified_at":"2026-06-16T22:51:45.080000Z","cvss_v3_score":6.8,"cvss_v3_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N","cvss_v3_severity":"MEDIUM","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":["CWE-331"],"nvd_references":["http://www.securitytracker.com/id?1020438","https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00402.html","http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html","http://www.kb.cert.org/vuls/id/800113","http://secunia.com/advisories/31137","http://secunia.com/advisories/31430","http://www.kb.cert.org/vuls/id/MIMG-7DWR4J","http://secunia.com/advisories/31169","http://www.phys.uu.nl/~rombouts/pdnsd.html","http://www.securitytracker.com/id?1020702","http://security.gentoo.org/glsa/glsa-201209-25.xml","http://www.vupen.com/english/advisories/2008/2052/references","http://www.securitytracker.com/id?1020561","http://www.vmware.com/security/advisories/VMSA-2008-0014.html","http://marc.info/?l=bugtraq&m=141879471518471&w=2","http://www.securitytracker.com/id?1020578","http://security.freebsd.org/advisories/FreeBSD-SA-08:06.bind.asc","https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9627","http://www.securitytracker.com/id?1020802","http://marc.info/?l=bugtraq&m=123324863916385&w=2","http://www.securityfocus.com/bid/30131","http://www.openbsd.org/errata42.html#013_bind","http://secunia.com/advisories/31236","http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html","http://www.securitytracker.com/id?1020651","http://www.securitytracker.com/id?1020437","http://secunia.com/advisories/31209","http://secunia.com/advisories/31012","http://secunia.com/advisories/31151","http://www.vupen.com/english/advisories/2008/2050/references","http://support.citrix.com/article/CTX117991","http://marc.info/?l=bugtraq&m=141879471518471&w=2","http://secunia.com/advisories/31237","http://www.phys.uu.nl/~rombouts/pdnsd/ChangeLog","http://lists.apple.com/archives/security-announce//2008/Jul/msg00003.html","https://exchange.xforce.ibmcloud.com/vulnerabilities/43334","http://secunia.com/advisories/31495","https://www.exploit-db.com/exploits/6130","http://www.cisco.com/en/US/products/products_security_advisory09186a00809c2168.shtml","http://www.securitytracker.com/id?1020579","http://www.nominum.com/asset_upload_file741_2661.pdf","http://www.securitytracker.com/id?1020653","http://secunia.com/advisories/30998","http://www.debian.org/security/2008/dsa-1603","http://www.vupen.com/english/advisories/2008/2525","http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00003.html","http://secunia.com/advisories/31094","http://www.ibm.com/support/docview.wss?uid=isg1IZ26668","http://secunia.com/advisories/31687","http://www.vupen.com/english/advisories/2008/2025/references","http://sunsolve.sun.com/search/document.do?assetkey=1-26-239392-1","http://www.us-cert.gov/cas/techalerts/TA08-260A.html","http://secunia.com/advisories/31588","http://secunia.com/advisories/31019","http://www.vupen.com/english/advisories/2008/2029/references","http://marc.info/?l=bugtraq&m=121630706004256&w=2","https://www.exploit-db.com/exploits/6123","http://www.ibm.com/support/docview.wss?uid=isg1IZ26671","https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00458.html","http://www.vupen.com/english/advisories/2008/2268","http://www.vupen.com/english/advisories/2009/0297","http://marc.info/?l=bugtraq&m=121630706004256&w=2","http://secunia.com/advisories/31207","http://secunia.com/advisories/31031","http://www.vupen.com/english/advisories/2008/2584","http://secunia.com/advisories/31451","http://www.vupen.com/english/advisories/2008/2051/references","http://secunia.com/advisories/30977","http://www.redhat.com/support/errata/RHSA-2008-0789.html","http://www.vupen.com/english/advisories/2008/2377","http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01662368","http://www.securitytracker.com/id?1020558","http://secunia.com/advisories/31221","http://rhn.redhat.com/errata/RHSA-2008-0533.html","http://www.openbsd.org/errata43.html#004_bind","http://www.securitytracker.com/id?1020804","http://secunia.com/advisories/31143","http://www.securityfocus.com/archive/1/495289/100/0/threaded","http://www.vupen.com/english/advisories/2008/2195/references","http://www.vupen.com/english/advisories/2008/2196/references","http://secunia.com/advisories/33714","http://marc.info/?l=bugtraq&m=121866517322103&w=2","http://secunia.com/advisories/33786","http://www.securitytracker.com/id?1020448","http://secunia.com/advisories/31882","http://www.vupen.com/english/advisories/2008/2384","http://www.ibm.com/support/docview.wss?uid=isg1IZ26669","http://up2date.astaro.com/2008/08/up2date_7202_released.html","http://www.vupen.com/english/advisories/2008/2123/references","http://support.apple.com/kb/HT3026","http://secunia.com/advisories/31014","http://secunia.com/advisories/30979","http://www.securitytracker.com/id?1020575","http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/","http://www.vupen.com/english/advisories/2008/2482","http://www.ibm.com/support/docview.wss?uid=isg1IZ26672","http://support.apple.com/kb/HT3129","http://www.debian.org/security/2008/dsa-1619","http://www.vupen.com/english/advisories/2008/2166/references","http://secunia.com/advisories/31072","http://www.vupen.com/english/advisories/2008/2139/references","https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5761","http://www.vupen.com/english/advisories/2008/2092/references","http://secunia.com/advisories/31482","http://www.ibm.com/support/docview.wss?uid=isg1IZ26670","http://www.mandriva.com/security/advisories?name=MDVSA-2008:139","https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5917","http://secunia.com/advisories/30989","http://www.vupen.com/english/advisories/2008/2055/references","http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01662368","http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=762152","http://www.ipcop.org/index.php?name=News&file=article&sid=40","http://secunia.com/advisories/31065","http://secunia.com/advisories/31254","http://www.securityfocus.com/archive/1/495869/100/0/threaded","http://www.doxpara.com/?p=1176","ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-009.txt.asc","http://www.ubuntu.com/usn/usn-627-1","http://www.vupen.com/english/advisories/2010/0622","http://www.securitytracker.com/id?1020576","http://www.isc.org/index.pl?/sw/bind/bind-security.php","http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01523520","http://secunia.com/advisories/31153","http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0231","http://www.vupen.com/english/advisories/2008/2549","http://www.ibm.com/support/docview.wss?uid=isg1IZ26667","http://www.rtpro.yamaha.co.jp/RT/FAQ/Security/VU800113.html","http://secunia.com/advisories/31213","http://secunia.com/advisories/31030","http://www.ubuntu.com/usn/usn-622-1","http://secunia.com/advisories/31033","http://www.unixwiz.net/techtips/iguide-kaminsky-dns-vuln.html","http://www.securitytracker.com/id?1020440","http://lists.apple.com/archives/security-announce//2008/Sep/msg00004.html","http://www.doxpara.com/DMK_BO2K8.ppt","http://lists.grok.org.uk/pipermail/full-disclosure/2008-August/064118.html","http://www.debian.org/security/2008/dsa-1604","http://secunia.com/advisories/31823","http://secunia.com/advisories/31326","http://www.vupen.com/english/advisories/2008/2558","https://www.exploit-db.com/exploits/6122","https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5725","http://www.caughq.org/exploits/CAU-EX-2008-0003.txt","https://exchange.xforce.ibmcloud.com/vulnerabilities/43637","http://www.vupen.com/english/advisories/2008/2383","http://www.securitytracker.com/id?1020560","http://secunia.com/advisories/31900","http://www.kb.cert.org/vuls/id/MIMG-7ECL8Q","http://support.citrix.com/article/CTX118183","http://secunia.com/advisories/30925","http://www.vupen.com/english/advisories/2009/0311","http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0018","http://www.debian.org/security/2008/dsa-1623","http://www.vupen.com/english/advisories/2008/2582","http://www.caughq.org/exploits/CAU-EX-2008-0002.txt","http://www.debian.org/security/2008/dsa-1605","http://www.novell.com/support/viewContent.do?externalId=7000912","http://www.bluecoat.com/support/security-advisories/dns_cache_poisoning","http://www.vupen.com/english/advisories/2008/2342","http://www.vupen.com/english/advisories/2008/2114/references","http://secunia.com/advisories/30973","http://secunia.com/advisories/31204","http://secunia.com/advisories/31354","http://security.gentoo.org/glsa/glsa-200812-17.xml","https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12117","http://secunia.com/advisories/33178","http://secunia.com/advisories/30988","http://lists.apple.com/archives/security-announce//2008/Sep/msg00003.html","http://secunia.com/advisories/31011","http://blog.invisibledenizen.org/2008/07/kaminskys-dns-issue-accidentally-leaked.html","http://www.vupen.com/english/advisories/2008/2334","http://www.securitytracker.com/id?1020577","http://secunia.com/advisories/31422","http://secunia.com/advisories/31197","http://www.securitytracker.com/id?1020548","http://www.vupen.com/english/advisories/2008/2467","http://sunsolve.sun.com/search/document.do?assetkey=1-26-240048-1","http://www.us-cert.gov/cas/techalerts/TA08-190B.html","http://www.us-cert.gov/cas/techalerts/TA08-190A.html","http://security.gentoo.org/glsa/glsa-200807-08.xml","http://secunia.com/advisories/31022","http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.539239","http://www.securitytracker.com/id?1020449","http://secunia.com/advisories/31093","http://secunia.com/advisories/31052","http://secunia.com/advisories/30980","http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.452680","http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=494401","http://secunia.com/advisories/31199","http://www.vupen.com/english/advisories/2008/2030/references","http://www.vupen.com/english/advisories/2008/2291","http://www.vupen.com/english/advisories/2008/2023/references","http://marc.info/?l=bugtraq&m=123324863916385&w=2","http://www.vupen.com/english/advisories/2008/2466","https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-037","http://secunia.com/advisories/31212","http://www.vupen.com/english/advisories/2008/2113/references","http://secunia.com/advisories/31152","http://www.vupen.com/english/advisories/2008/2019/references","http://www.vupen.com/english/advisories/2008/2197/references"],"vuln_status":"Modified","trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:04:25.219176Z"},"effective_severity":"MEDIUM","badges":["epss"],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"N","value_label":"Network"},{"metric":"AC","name":"Attack Complexity","value":"H","value_label":"High"},{"metric":"PR","name":"Privileges Required","value":"N","value_label":"None"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"C","value_label":"Changed"},{"metric":"C","name":"Confidentiality","value":"N","value_label":"None"},{"metric":"I","name":"Integrity","value":"H","value_label":"High"},{"metric":"A","name":"Availability","value":"N","value_label":"None"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"isc","vendor_name":"ISC","product_slug":"bind","product_name":"BIND","version_start":"4","version_start_inclusive":true,"version_end":"4","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:isc:bind:4:*:*:*:*:*:*:*"},{"vendor_slug":"isc","vendor_name":"ISC","product_slug":"bind","product_name":"BIND","version_start":"8","version_start_inclusive":true,"version_end":"8","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:isc:bind:8:*:*:*:*:*:*:*"},{"vendor_slug":"isc","vendor_name":"ISC","product_slug":"bind","product_name":"BIND","version_start":"9.2.9","version_start_inclusive":true,"version_end":"9.2.9","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:isc:bind:9.2.9:*:*:*:*:*:*:*"}],"exploit_refs":[],"news":[],"references":[{"url":"http://www.securitytracker.com/id?1020438","source_type":"MISC","tags":[]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00402.html","source_type":"MISC","tags":[]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://www.kb.cert.org/vuls/id/800113","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31137","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31430","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.kb.cert.org/vuls/id/MIMG-7DWR4J","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31169","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.phys.uu.nl/~rombouts/pdnsd.html","source_type":"MISC","tags":[]},{"url":"http://www.securitytracker.com/id?1020702","source_type":"MISC","tags":[]},{"url":"http://security.gentoo.org/glsa/glsa-201209-25.xml","source_type":"MISC","tags":[]},{"url":"http://www.vupen.com/english/advisories/2008/2052/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.securitytracker.com/id?1020561","source_type":"MISC","tags":[]},{"url":"http://www.vmware.com/security/advisories/VMSA-2008-0014.html","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://marc.info/?l=bugtraq&m=141879471518471&w=2","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://www.securitytracker.com/id?1020578","source_type":"MISC","tags":[]},{"url":"http://security.freebsd.org/advisories/FreeBSD-SA-08:06.bind.asc","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9627","source_type":"MISC","tags":[]},{"url":"http://www.securitytracker.com/id?1020802","source_type":"MISC","tags":[]},{"url":"http://marc.info/?l=bugtraq&m=123324863916385&w=2","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://www.securityfocus.com/bid/30131","source_type":"MISC","tags":[]},{"url":"http://www.openbsd.org/errata42.html#013_bind","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31236","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://www.securitytracker.com/id?1020651","source_type":"MISC","tags":[]},{"url":"http://www.securitytracker.com/id?1020437","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31209","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31012","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31151","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2050/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://support.citrix.com/article/CTX117991","source_type":"MISC","tags":[]},{"url":"http://marc.info/?l=bugtraq&m=141879471518471&w=2","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://secunia.com/advisories/31237","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.phys.uu.nl/~rombouts/pdnsd/ChangeLog","source_type":"MISC","tags":[]},{"url":"http://lists.apple.com/archives/security-announce//2008/Jul/msg00003.html","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/43334","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31495","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"https://www.exploit-db.com/exploits/6130","source_type":"EXPLOIT","tags":["exploit"]},{"url":"http://www.cisco.com/en/US/products/products_security_advisory09186a00809c2168.shtml","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.securitytracker.com/id?1020579","source_type":"MISC","tags":[]},{"url":"http://www.nominum.com/asset_upload_file741_2661.pdf","source_type":"MISC","tags":[]},{"url":"http://www.securitytracker.com/id?1020653","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/30998","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.debian.org/security/2008/dsa-1603","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2525","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00003.html","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://secunia.com/advisories/31094","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.ibm.com/support/docview.wss?uid=isg1IZ26668","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31687","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2025/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-239392-1","source_type":"MISC","tags":[]},{"url":"http://www.us-cert.gov/cas/techalerts/TA08-260A.html","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31588","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31019","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2029/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://marc.info/?l=bugtraq&m=121630706004256&w=2","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"https://www.exploit-db.com/exploits/6123","source_type":"EXPLOIT","tags":["exploit"]},{"url":"http://www.ibm.com/support/docview.wss?uid=isg1IZ26671","source_type":"MISC","tags":[]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00458.html","source_type":"MISC","tags":[]},{"url":"http://www.vupen.com/english/advisories/2008/2268","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/0297","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://marc.info/?l=bugtraq&m=121630706004256&w=2","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://secunia.com/advisories/31207","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31031","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2584","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31451","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2051/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/30977","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2008-0789.html","source_type":"MISC","tags":[]},{"url":"http://www.vupen.com/english/advisories/2008/2377","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01662368","source_type":"MISC","tags":[]},{"url":"http://www.securitytracker.com/id?1020558","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31221","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2008-0533.html","source_type":"MISC","tags":[]},{"url":"http://www.openbsd.org/errata43.html#004_bind","source_type":"MISC","tags":[]},{"url":"http://www.securitytracker.com/id?1020804","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31143","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.securityfocus.com/archive/1/495289/100/0/threaded","source_type":"MISC","tags":[]},{"url":"http://www.vupen.com/english/advisories/2008/2195/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2196/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/33714","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://marc.info/?l=bugtraq&m=121866517322103&w=2","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://secunia.com/advisories/33786","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.securitytracker.com/id?1020448","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31882","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2384","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.ibm.com/support/docview.wss?uid=isg1IZ26669","source_type":"MISC","tags":[]},{"url":"http://up2date.astaro.com/2008/08/up2date_7202_released.html","source_type":"MISC","tags":[]},{"url":"http://www.vupen.com/english/advisories/2008/2123/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://support.apple.com/kb/HT3026","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31014","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/30979","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.securitytracker.com/id?1020575","source_type":"MISC","tags":[]},{"url":"http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/","source_type":"MISC","tags":[]},{"url":"http://www.vupen.com/english/advisories/2008/2482","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.ibm.com/support/docview.wss?uid=isg1IZ26672","source_type":"MISC","tags":[]},{"url":"http://support.apple.com/kb/HT3129","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.debian.org/security/2008/dsa-1619","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2166/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31072","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2139/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5761","source_type":"MISC","tags":[]},{"url":"http://www.vupen.com/english/advisories/2008/2092/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31482","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.ibm.com/support/docview.wss?uid=isg1IZ26670","source_type":"MISC","tags":[]},{"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2008:139","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5917","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/30989","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2055/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01662368","source_type":"MISC","tags":[]},{"url":"http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=762152","source_type":"MISC","tags":[]},{"url":"http://www.ipcop.org/index.php?name=News&file=article&sid=40","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31065","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31254","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.securityfocus.com/archive/1/495869/100/0/threaded","source_type":"MISC","tags":[]},{"url":"http://www.doxpara.com/?p=1176","source_type":"MISC","tags":[]},{"url":"ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-009.txt.asc","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.ubuntu.com/usn/usn-627-1","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/0622","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.securitytracker.com/id?1020576","source_type":"MISC","tags":[]},{"url":"http://www.isc.org/index.pl?/sw/bind/bind-security.php","source_type":"MISC","tags":[]},{"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01523520","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31153","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0231","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2549","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.ibm.com/support/docview.wss?uid=isg1IZ26667","source_type":"MISC","tags":[]},{"url":"http://www.rtpro.yamaha.co.jp/RT/FAQ/Security/VU800113.html","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31213","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31030","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.ubuntu.com/usn/usn-622-1","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31033","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.unixwiz.net/techtips/iguide-kaminsky-dns-vuln.html","source_type":"MISC","tags":[]},{"url":"http://www.securitytracker.com/id?1020440","source_type":"MISC","tags":[]},{"url":"http://lists.apple.com/archives/security-announce//2008/Sep/msg00004.html","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://www.doxpara.com/DMK_BO2K8.ppt","source_type":"MISC","tags":[]},{"url":"http://lists.grok.org.uk/pipermail/full-disclosure/2008-August/064118.html","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://www.debian.org/security/2008/dsa-1604","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31823","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31326","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2558","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"https://www.exploit-db.com/exploits/6122","source_type":"EXPLOIT","tags":["exploit"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5725","source_type":"MISC","tags":[]},{"url":"http://www.caughq.org/exploits/CAU-EX-2008-0003.txt","source_type":"MISC","tags":[]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/43637","source_type":"MISC","tags":[]},{"url":"http://www.vupen.com/english/advisories/2008/2383","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.securitytracker.com/id?1020560","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31900","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.kb.cert.org/vuls/id/MIMG-7ECL8Q","source_type":"MISC","tags":[]},{"url":"http://support.citrix.com/article/CTX118183","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/30925","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/0311","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0018","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.debian.org/security/2008/dsa-1623","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2582","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.caughq.org/exploits/CAU-EX-2008-0002.txt","source_type":"MISC","tags":[]},{"url":"http://www.debian.org/security/2008/dsa-1605","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.novell.com/support/viewContent.do?externalId=7000912","source_type":"MISC","tags":[]},{"url":"http://www.bluecoat.com/support/security-advisories/dns_cache_poisoning","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2342","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2114/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/30973","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31204","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31354","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://security.gentoo.org/glsa/glsa-200812-17.xml","source_type":"MISC","tags":[]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12117","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/33178","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/30988","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://lists.apple.com/archives/security-announce//2008/Sep/msg00003.html","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://secunia.com/advisories/31011","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://blog.invisibledenizen.org/2008/07/kaminskys-dns-issue-accidentally-leaked.html","source_type":"MISC","tags":[]},{"url":"http://www.vupen.com/english/advisories/2008/2334","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.securitytracker.com/id?1020577","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31422","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31197","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.securitytracker.com/id?1020548","source_type":"MISC","tags":[]},{"url":"http://www.vupen.com/english/advisories/2008/2467","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-240048-1","source_type":"MISC","tags":[]},{"url":"http://www.us-cert.gov/cas/techalerts/TA08-190B.html","source_type":"MISC","tags":[]},{"url":"http://www.us-cert.gov/cas/techalerts/TA08-190A.html","source_type":"MISC","tags":[]},{"url":"http://security.gentoo.org/glsa/glsa-200807-08.xml","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31022","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.539239","source_type":"MISC","tags":[]},{"url":"http://www.securitytracker.com/id?1020449","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31093","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31052","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/30980","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.452680","source_type":"MISC","tags":[]},{"url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=494401","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31199","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2030/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2291","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2023/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://marc.info/?l=bugtraq&m=123324863916385&w=2","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://www.vupen.com/english/advisories/2008/2466","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-037","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/31212","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2113/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/31152","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2019/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.vupen.com/english/advisories/2008/2197/references","source_type":"VENDOR_ADVISORY","tags":["advisory"]}],"timeline":[{"type":"published","at":"2008-07-08T23:00:00Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-24T01:02:28.508594Z","label":"CVSS score revised","source":"nvd"},{"type":"cvss_changed","at":"2026-06-24T01:02:28.508594Z","label":"CVSS score revised","source":"nvd"},{"type":"cvss_changed","at":"2026-06-24T01:02:28.508594Z","label":"CVSS score revised","source":"nvd"}]}