:Amit Klein has reported a vulnerability in BIND, which can be exploited by malicious people to poison the DNS cache.The vulnerability is caused due to predictable query IDs in outgoing queries (e.g. if BIND works as resolver or when sending NOTIFYs to slaves) and can be exploited to poison the DNS cache when the query ID is guessed.Reportedly, the probability to guess the next query ID is between 25% and 43%, depending on the handled DNS traffic. The vulnerability is reported in BIND 8.x versions prior to 8.4.7-P1.Solution:Update to BIND 8.4.7-P1.NOTE: BIND 8.x has reached "End of Life". The vendor advises all users to upgrade to BIND 9.4.1-P1.Provided and/or discovered by:Amit KleinOriginal Advisory:ISC:http://www.isc.org/index.pl?/sw/bind/bind8-eol.phpTrusteer:http://www.trusteer.com/docs/bind8dns.htmlOther References:US-CERT VU#927905:http://www.kb.cert.org/vuls/id/927905

Original post by kapil