ZDNet: Attack Code Published for DNS Flaw

Posted by: gregness | July 24, 2008

ZDNet: Attack Code Published for DNS Flaw

A few hours ago Ryan Naraine at ZDnet reported that DNS vulnerability attack code has been published.

The urgency to patch Dan Kaminsky’s DNS cache poisoning vulnerability just went up a few notches.

Exploit code for the flaw, which allows the insertion of malicious DNS records into the cache of the target nameserver, has been added to Metasploit, a freely distributed attack/pen-testing tool.

According to Metasploit creator HD Moore (left), who teamed up with researcher |)ruid to create the exploit, a DNS service has also been created to assist with the exploit.

Ryan Naraine, ZDnet July 23 2:55PM

You can read Cricket Liu’s breaking interview published this AM or attend a prescient webinar featuring Liu and Dan Kaminsky that was recorded just days ago. The original Archimedius coverage from July 22 contains links to various trade articles and resources.

You can read my disclaimer at: About « ARCHIMEDIUS.

Posted in Uncategorized | Tags: Cricket Liu, Dan Kaminsky, DNS cache poisoning, DNS vulnerability, HD Moore, Infoblox, Metasploit, Ryan Naraine

Leave a response

You must be logged in to post a comment.

M	T	W	T	F	S	S
« Jun				Aug »
	1	2	3	4	5	6
7	8	9	10	11	12	13
14	15	16	17	18	19	20
21	22	23	24	25	26	27
28	29	30	31

ARCHIMEDIUS

ZDNet: Attack Code Published for DNS Flaw

Leave a response

Categories

Top Posts

Tags

Recent Posts

Blogroll

Blog Stats

Recent Comments