CVE-2008-3905

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

resolv.rb in Ruby 1.8.5 and earlier, 1.8.6 before 1.8.6-p287, 1.8.7 before 1.8.7-p72, and 1.9 r18423 and earlier uses sequential transaction IDs and constant source ports for DNS requests, which makes it easier for remote attackers to spoof DNS responses, a different vulnerability than CVE-2008-1447.

References

http://secunia.com/advisories/31430

http://secunia.com/advisories/32165

http://secunia.com/advisories/32219

http://secunia.com/advisories/32255

http://secunia.com/advisories/32256

http://secunia.com/advisories/32371

http://secunia.com/advisories/32948

http://secunia.com/advisories/33178

http://security.gentoo.org/glsa/glsa-200812-17.xml

http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.371754

http://support.avaya.com/elmodocs2/security/ASA-2008-424.htm

http://www.debian.org/security/2008/dsa-1651

http://www.debian.org/security/2008/dsa-1652

http://www.openwall.com/lists/oss-security/2008/09/03/3

http://www.openwall.com/lists/oss-security/2008/09/04/9

http://www.redhat.com/support/errata/RHSA-2008-0897.html

http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/

http://www.securityfocus.com/bid/31699

http://www.vupen.com/english/advisories/2008/2334

https://exchange.xforce.ibmcloud.com/vulnerabilities/45935

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10034

https://usn.ubuntu.com/651-1/

https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00259.html

https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00299.html

Details

Source: MITRE

Published: 2008-09-04

Updated: 2018-10-03

Type: CWE-287

Risk Information

CVSS v2

Base Score: 5.8

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:P

Impact Score: 4.9

Exploitability Score: 8.6

Severity: MEDIUM

Tenable Plugins

View all (23 total)

IDNameProductFamilySeverity
67752Oracle Linux 4 / 5 : ruby (ELSA-2008-0897)NessusOracle Linux Local Security Checks
high
67751Oracle Linux 3 : ruby (ELSA-2008-0896)NessusOracle Linux Local Security Checks
high
60485Scientific Linux Security Update : ruby on SL3.x, SL4.x, SL5.x i386/x86_64NessusScientific Linux Local Security Checks
high
51760SuSE 10 Security Update : ruby (ZYPP Patch Number 6338)NessusSuSE Local Security Checks
high
42032openSUSE 10 Security Update : ruby (ruby-6339)NessusSuSE Local Security Checks
high
41452SuSE 11 Security Update : ruby (SAT Patch Number 1073)NessusSuSE Local Security Checks
high
41312SuSE9 Security Update : ruby (YOU Patch Number 12452)NessusSuSE Local Security Checks
high
40306openSUSE Security Update : ruby (ruby-1070)NessusSuSE Local Security Checks
high
40122openSUSE Security Update : ruby (ruby-1070)NessusSuSE Local Security Checks
high
38018Mandriva Linux Security Advisory : ruby (MDVSA-2008:226)NessusMandriva Local Security Checks
high
37068Ubuntu 6.06 LTS / 7.04 / 7.10 / 8.04 LTS : ruby1.8 vulnerabilities (USN-651-1)NessusUbuntu Local Security Checks
high
35188GLSA-200812-17 : Ruby: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
34972Slackware 11.0 / 12.0 / 12.1 : ruby (SSA:2008-334-01)NessusSlackware Local Security Checks
medium
34502CentOS 4 / 5 : ruby (CESA-2008:0897)NessusCentOS Local Security Checks
high
34466RHEL 4 / 5 : ruby (RHSA-2008:0897)NessusRed Hat Local Security Checks
high
34465RHEL 3 : ruby (RHSA-2008:0896)NessusRed Hat Local Security Checks
high
34462CentOS 3 : ruby (CESA-2008:0896)NessusCentOS Local Security Checks
high
34388Debian DSA-1652-1 : ruby1.9 - several vulnerabilitiesNessusDebian Local Security Checks
high
34387Debian DSA-1651-1 : ruby1.8 - several vulnerabilitiesNessusDebian Local Security Checks
high
34380Fedora 9 : ruby-1.8.6.287-2.fc9 (2008-8738)NessusFedora Local Security Checks
high
34379Fedora 8 : ruby-1.8.6.287-2.fc8 (2008-8736)NessusFedora Local Security Checks
high
33907FreeBSD : ruby -- DoS vulnerability in WEBrick (f7ba20aa-6b5a-11dd-9d79-001fc61c2a55)NessusFreeBSD Local Security Checks
high
33906FreeBSD : ruby -- multiple vulnerabilities in safe level (c329712a-6b5b-11dd-9d79-001fc61c2a55)NessusFreeBSD Local Security Checks
high