FierceCIOFierceCIOTechWatchFierceMobileITFierceContentManagement   FierceVoIPFierceHealthITFierceFinanceIT
About | Sample | Privacy

Exploit code for DNS flaw released

Tools
Tags
Dan Kaminsky
researcher
Poison
Hacking
DNS
black hat

Exploit code for a much touted flaw in the Domain Name System (DNS) has been released. This comes just days after details that the serious vulnerability was inadvertently disclosed by a reverse engineering specialist who independently worked out the weakness. A hacker could leverage upon this vulnerability to poison a DNS's cache and redirect a user's traffic without their knowledge.

Dan Kaminsky, the researcher who originally found the flaw, had known about the vulnerability for months. However, Kaminsky planned to publicly release further details only at the upcoming Black Hat conference in next month. This was to allow both hardware and software vendors to rectify the problem. Amidst reports of major ISP yet to apply this critical DNS patch, Kaminsky summed it up in a few words. "Patch. Today. Now. Yes, stay late."

For more on this serious DNS vulnerability:
- check out this vnunet.com article

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.

More information about formatting options

What is 35 + 46?
To combat spam, please solve the math question above.