当前位置: 安全纵横 > 安全公告

多家厂商最新DNS服务器缓存欺骗漏洞

DNS协议是TCP/IP协议组的一部分,允许DNS客户端查询DNS数据库将主机名解析为IP地址。
多家厂商产品的DNS服务存在缓存中毒漏洞,远程攻击者可能利用该漏洞对使DNS服务器的用户进行欺骗,进而进行拒绝服务攻击、网络钓鱼和金融欺骗。
受DNS缓存中毒漏洞影响的产品包括:

Ubuntu Ubuntu Linux 8.x
Ubuntu Ubuntu Linux 7.x
Ubuntu Ubuntu Linux 6.x
Sun Solaris 9
Sun Solaris 8
Sun Solaris 10
Sun OpenSolaris x
Slackware Linux 10.x
Slackware Linux 9.x
Slackware Linux 8.x
Slackware Linux 12.x
Slackware Linux 11.x
Slackware Linux -current
S.u.S.E. SUSE Linux Enterprise Server
S.u.S.E. SUSE Linux Enterprise Desktop
S.u.S.E. SUSE Linux Enterprise Desktop
S.u.S.E. openSUSE 11.0
S.u.S.E. Open-Enterprise-Server 0
S.u.S.E. Novell Linux POS 9
S.u.S.E. Novell Linux Desktop 9
rPath rPath Linux 2
RedHat Fedora 9 0
RedHat Fedora 8 0
RedHat Enterprise Linux WS
RedHat Enterprise Linux ES
RedHat Enterprise Linux Desktop
RedHat Enterprise Linux AS
RedHat Enterprise Linux 5
RedHat Desktop
RedHat Advanced Workstation for the Itanium Processor
RedHat Advanced Workstation for the Itanium Processor
OpenBSD OpenBSD
Novell Open Enterprise Server (OES) 0
Novell Netware 6.x
Novell Netware 5.x
NetBSD NetBSD
Microsoft Windows XP Tablet PC Edition
Microsoft Windows XP Professional
Microsoft Windows XP Media Center Edition
Microsoft Windows XP Home
Microsoft Windows Server 2003 x64
Microsoft Windows Server 2003 Web Edition
Microsoft Windows Server 2003 Standard Edition
Microsoft Windows Server 2003 Enterprise Edition
Microsoft Windows Server 2003 Datacenter Edition
Microsoft Windows 2000 Server
Microsoft Windows 2000 Professional
Microsoft Windows 2000 Datacenter Server
Microsoft Windows 2000 Advanced Server
Juniper Networks JUNOS
ISC BIND 8.x
ISC BIND 9.5.x
ISC BIND 9.4.x
ISC BIND 9.3.x
ISC BIND 9.2.x
ISC BIND 9.1.x
IPCop IPCop 1.4.x
Infoblox NIOS 4
Infoblox DNS One Appliance
IBM AIX 6.x
IBM AIX 5.x
HP Storage Management Appliance
HP HP-UX B.11.x
Gentoo Linux
FreeBSD FreeBSD 7.0
FreeBSD FreeBSD 6.0
F5 WANJet 5.x
F5 FirePass 6.x
F5 FirePass 5.x5
F5 Enterprise Manager 1.x
F5 BigIP
F5 3-DNS 4.x
Dnsmasq Dnsmasq 2.x
Debian Linux 4.x
Cisco Network Registar
Cisco IOS 12.x
Cisco CNS Network Registrar 6.x.x
Cisco Application & Content Networking Software
BlueCoat Systems ProxySG
BlueCoat Systems ProxyRA
BlueCoat Systems PacketShaper
BlueCoat Systems iShaper
BlueCoat Systems Director
Bluecat Networks Adonis (Firmware) 5.x
Avaya Messaging Application Server
Apple Mac OS X Server 10.x.x
Apple Mac OS X 10.x.x

杭州安恒建议您尽快升级到最新的补丁,通过如下连接获取最新的补丁信息:

UBUNTU
http://www.ubuntu.com/usn/usn-622-1

microsoft
http://www.microsoft.com/technet/security/bulletin/ms08-037.mspx

debian
http://www.debian.org/security/2008/dsa-1605
http://www.debian.org/security/2008/dsa-1604
http://www.debian.org/security/2008/dsa-1603

CISCO
http://www.cisco.com/en/US/products/products_security_advisory09186a00809c2168

ISC BIND
http://www.isc.org/index.pl?/sw/bind/view/?release=9.5.0-P2
http://www.isc.org/index.pl?/sw/bind/view/?release=9.4.2-P2
http://www.isc.org/index.pl?/sw/bind/view/?release=9.3.5-P2

Sun Solaris
http://sunsolve.sun.com/search/document.do?assetkey=1-26-239392-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-240048-1

F5
https://support.f5.com/kb/en-us/solutions/public/8000/900/sol8938.html

OpenBSD
http://www.openbsd.org/errata42.html
http://www.openbsd.org/errata43.html

Blue Coat
http://www.bluecoat.com/support/security-advisories/dns_cache_poisoning

IBM AIX
http://aix.software.ibm.com/aix/efixes/security/bind_advisory.asc

Novell
http://www.novell.com/support/viewContent.do?externalId=7000912&sliceId=1

Juniper Networks
https://www.juniper.net/alerts/viewal...ber=PSN-2008-06-040&viewMode=view

Redhat
https://www.redhat.com/support/errata/RHSA-2008-0533.html

Freebsd
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-08:06.bind.asc