CVE-2008-1146

Name of the Vulnerable Software and Affected Versions OpenBSD versions 2.8 through 4.2

Description A pseudo-random number generator (PRNG) algorithm, known as "Algorithm X3", is used in OpenBSD. This algorithm allows remote attackers to guess sensitive values, such as DNS transaction IDs, by observing a sequence of previously generated values. This issue can be leveraged for attacks like DNS cache poisoning against OpenBSD's modification of BIND.

Recommendations For OpenBSD versions 2.8 through 4.2, consider updating to a version that uses a more secure PRNG algorithm to prevent attackers from guessing sensitive values.