Apple Bonjour for Windows mDNSResponder Remote Forged DNS Response Vulnerability
BID:31093
Info
Apple Bonjour for Windows mDNSResponder Remote Forged DNS Response Vulnerability
| Bugtraq ID: | 31093 |
| Class: | Design Error |
| CVE: |
CVE-2008-3630 |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 09 2008 12:00AM |
| Updated: | Jan 23 2012 06:50PM |
| Credit: | This issue was disclosed by the vendor. |
| Vulnerable: |
Gentoo Linux Apple Bonjour for Windows 1.0.4 |
| Not Vulnerable: |
Apple iTunes 8.0 Apple Bonjour for Windows 1.0.5 |
Discussion
Apple Bonjour for Windows mDNSResponder Remote Forged DNS Response Vulnerability
Apple Bonjour for Windows mDNSResponder is prone to a remote vulnerability that can allow attackers to spoof DNS responses because of a weakness in its DNS protocol implementation.
An attacker may leverage this issue to forge unicast hostname resolution responses in applications that may use the application's API for DNS. Successful exploits allow attackers to redirect network traffic, which can aid in man-in-the-middle attacks.
Versions prior to Bonjour for Windows 1.0.5, included in Apple iTunes 8.0, are vulnerable to this issue.
Apple Bonjour for Windows mDNSResponder is prone to a remote vulnerability that can allow attackers to spoof DNS responses because of a weakness in its DNS protocol implementation.
An attacker may leverage this issue to forge unicast hostname resolution responses in applications that may use the application's API for DNS. Successful exploits allow attackers to redirect network traffic, which can aid in man-in-the-middle attacks.
Versions prior to Bonjour for Windows 1.0.5, included in Apple iTunes 8.0, are vulnerable to this issue.
Exploit / POC
Apple Bonjour for Windows mDNSResponder Remote Forged DNS Response Vulnerability
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Apple Bonjour for Windows mDNSResponder Remote Forged DNS Response Vulnerability
Solution:
Updates are available. Please see the references for more information.
Apple Bonjour for Windows 1.0.4
Solution:
Updates are available. Please see the references for more information.
Apple Bonjour for Windows 1.0.4
-
Apple Bonjour for Windows 1.0.5
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=21079&cat= 59&platform=osx&method=sa/BonjourSetup.exe
References
Apple Bonjour for Windows mDNSResponder Remote Forged DNS Response Vulnerability
References:
References: