Google Android DNS Resolver Randomization Flaw Lets Remote Users Poison the DNS Cache
|
|
SecurityTracker Alert ID: 1027291 |
|
SecurityTracker URL: http://securitytracker.com/id/1027291
|
|
CVE Reference:
CVE-2012-2808
(Links to External Site)
|
Date: Jul 24 2012
|
Impact:
Modification of system information
|
Fix Available: Yes Vendor Confirmed: Yes Exploit Included: Yes
|
Version(s): 4.0.4 and prior versions
|
Description:
A vulnerability was reported in Google Android. A remote user can poison the DNS cache.
The res_randomid() function, which bases a return value on the process ID and the current time, is called twice in quick succession. As a result, the effective randomization is less than intended. A remote user can exploit this to return spoofed DNS responses and poison the DNS cache on the target system.
The vendor was notified on May 21, 2012.
The original advisory is available at:
http://bit.ly/MkteBx
http://blog.watchfire.com/files/androiddnsweakprng.pdf
Roee Hay of Roi Saltzman IBM Application Security Research Group reported this vulnerability.
|
Impact:
A remote user can poison the DNS cache.
|
Solution:
The vendor has issued a fix (4.1.1).
|
Vendor URL: www.google.com/ (Links to External Site)
|
Cause:
Randomization error
|
Underlying OS:
|
|
Message History:
None.
|
Source Message Contents
|
|
|
[Original Message Not Available for Viewing]
|
|
