Weak randomness in Android’s DNS resolver CVE-2012-2808 Roee Hay & Roi Saltzman <roeeh,roisa@il.ibm.com> IBM Application Security Research Group July 24, 2012 Android’s stub resolver is vulnerable to DNS poisoning due to weak randomness in its implementation. We show how an attacker can successfully guess the nonce of the DNS request with a probability that is sufficient for a feasible attack. We