Major DNS vulnerability found

Collapse
X
Collapse
 
  • Page of 2
  • Time
  • Show
Clear All
new posts
Previous 1 2 template Next
  • Voltage Spike
    replied
    Re: Major DNS vulnerability found

    And if you wish to test your DNS server, it appears that Mr. Kaminsky has released a DNS vulnerability testing tool.

    It appears to be as simple as checking if your DNS server always makes requests from the same source port (which is what I gathered from the CERT, as well), but I'm sure the technical details are far more interesting.

    Edit: Apparently the testing tool has been up since at least the slashdot.org article (which I just visited). One of the comments hints at an article about how Dan uses Javascript in a web page to exploit this flaw in DNS-caching home routers. That's just mean.
    Last edited by Voltage Spike; July 8, 2008, 15:35.

      Leave a comment:

    • jedi
      replied
      Re: Major DNS vulnerability found

      Link to the advisory (which was posted as link to a .doc in the article off /.):

      http://www.kb.cert.org/vuls/id/800113

        Leave a comment:

      • Dark Tangent
        replied
        Re: Major DNS vulnerability found

        Originally posted by bascule
        It apparently has something to do with 16-bit randomness, or something. Got me:

        http://news.cnet.com/8301-10789_3-9985618-57.html
        We'll have his press release audio interview online in a bit..

          Leave a comment:

        • bascule
          started a topic Major DNS vulnerability found

          Major DNS vulnerability found

          It apparently has something to do with 16-bit randomness, or something. Got me:

          http://news.cnet.com/8301-10789_3-9985618-57.html

          Kaminsky said he will release details in time for Black Hat 2008, on August 7 and 8, in Las Vegas.
          Tags: None
          Previous 1 2 template Next
          Working...