2010-01-20 16:00:00
mitre
PUBLISHED
Zeus Web Server before 4.3r5 does not use random transaction IDs for DNS requests, which makes it easier for remote attackers to spoof DNS responses.