VYPR
Unrated severityNVD Advisory· Published Jul 24, 2007· Updated Jun 16, 2026

CVE-2007-2926

CVE-2007-2926

Description

ISC BIND 9 through 9.5.0a5 uses a weak random number generator during generation of DNS query ids when answering resolver questions or sending NOTIFY messages to slave name servers, which makes it easier for remote attackers to guess the next query id and perform DNS cache poisoning.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

9
  • Isc/Bind8 versions
    cpe:2.3:a:isc:bind:9.0:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:a:isc:bind:9.0:*:*:*:*:*:*:*
    • cpe:2.3:a:isc:bind:9.1:*:*:*:*:*:*:*
    • cpe:2.3:a:isc:bind:9.2:*:*:*:*:*:*:*
    • cpe:2.3:a:isc:bind:9.3:*:*:*:*:*:*:*
    • cpe:2.3:a:isc:bind:9.4:*:*:*:*:*:*:*
    • cpe:2.3:a:isc:bind:9.5:*:*:*:*:*:*:*
    • cpe:2.3:a:isc:bind:9.5.0:*:*:*:*:*:*:*
    • (no CPE)range: 9 through 9.5.0a5

Patches

Vulnerability mechanics

References

67

News mentions

0

No linked articles in our index yet.