CVE-2008-3630

Name of the Vulnerable Software and Affected Versions Apple Bonjour for Windows versions prior to 1.0.5

Description The issue concerns mDNSResponder in Apple Bonjour for Windows. When an application utilizes the Bonjour API for unicast DNS, it fails to select random values for transaction IDs or source ports in DNS requests. This oversight makes it easier for remote attackers to spoof DNS responses.

Recommendations For versions prior to 1.0.5, update to version 1.0.5 or later to resolve the issue.