CVE-2008-3217 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2008-3217 Interim 1 3 2021-06-09T08:45:43Z current 2021-05-30T12:43:20Z 2021-06-09T08:45:43Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2008-3217 PowerDNS Recursor before 3.1.6 does not always use the strongest random number generator for source port selection, which makes it easier for remote attack vectors to conduct DNS cache poisoning. NOTE: this is related to incomplete integration of security improvements associated with addressing CVE-2008-1637. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings PowerDNS Recursor before 3.1.6 does not always use the strongest random number generator for source port selection, which makes it easier for remote attack vectors to conduct DNS cache poisoning. NOTE: this is related to incomplete integration of security improvements associated with addressing CVE-2008-1637. CVE-2008-3217 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P