An issue was discovered in FNET through 4.6.4. The code that initializes the DNS client interface structure does not set sufficiently random transaction IDs (they are always set to 1 in fnetdnspoll in fnetdns.c). This significantly simplifies DNS cache poisoning attacks.