Ubuntu Security Notice (C) 2008-2014 Canonical, Inc. / NASL script (C) 2008-2014 Tenable Network Security, Inc.
The remote Ubuntu host is missing one or more security-related patches.
Dan Kaminsky discovered weaknesses in the DNS protocol as implemented
by Dnsmasq. A remote attacker could exploit this to spoof DNS entries
and poison DNS caches. Among other things, this could lead to
misdirected email and web traffic.
Update the affected dnsmasq and / or dnsmasq-base packages.
Risk factor :
Medium / CVSS Base Score : 6.4
CVSS Temporal Score : 5.6
Public Exploit Available : true