VYPR
Unrated severityNVD Advisory· Published Jan 20, 2010· Updated Jun 16, 2026

CVE-2010-0362

CVE-2010-0362

Description

Zeus Web Server before 4.3r5 does not use random transaction IDs for DNS requests, which makes it easier for remote attackers to spoof DNS responses.

Affected products

18
  • cpe:2.3:a:zeus:zeus_web_server:3.3:*:*:*:*:*:*:*+ 17 more
    • cpe:2.3:a:zeus:zeus_web_server:3.3:*:*:*:*:*:*:*
    • cpe:2.3:a:zeus:zeus_web_server:3.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:zeus:zeus_web_server:3.3.2:*:*:*:*:*:*:*
    • cpe:2.3:a:zeus:zeus_web_server:3.3.3:*:*:*:*:*:*:*
    • cpe:2.3:a:zeus:zeus_web_server:3.3.4:*:*:*:*:*:*:*
    • cpe:2.3:a:zeus:zeus_web_server:3.3.5:*:*:*:*:*:*:*
    • cpe:2.3:a:zeus:zeus_web_server:3.3.6:*:*:*:*:*:*:*
    • cpe:2.3:a:zeus:zeus_web_server:3.3.7:*:*:*:*:*:*:*
    • cpe:2.3:a:zeus:zeus_web_server:3.3.8:*:*:*:*:*:*:*
    • cpe:2.3:a:zeus:zeus_web_server:3.4:*:*:*:*:*:*:*
    • cpe:2.3:a:zeus:zeus_web_server:4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:zeus:zeus_web_server:4.1:r1:*:*:*:*:*:*
    • cpe:2.3:a:zeus:zeus_web_server:4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:zeus:zeus_web_server:4.2:r2:*:*:*:*:*:*
    • cpe:2.3:a:zeus:zeus_web_server:4.3:*:*:*:*:*:*:*
    • cpe:2.3:a:zeus:zeus_web_server:4.3:r3:*:*:*:*:*:*
    • cpe:2.3:a:zeus:zeus_web_server:*:r4:*:*:*:*:*:*range: <=4.3
    • (no CPE)range: <4.3r5

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.