Researcher Dan Kaminsky discovered a fundamental issue in the DNS protocol that affects multiple DNS implementations -- both client and server. It has been described to be very serious, with very little info on how the actual flaw is actually exploited (other than it's related to DNS cache poisoning). DNS implementations with randomized source ports are supposed to counter it.
Here's a good CERT link to bookmark -- it will be updated periodically to show which vendors are vulnerable. As of now it looks like several major vendors including Microsoft are vulnerable.
The first link says that you can go to Dan's site at www.doxpara.com to see if you're vulnerable. But at the moment, it looks like the site is down, courtesy of Slashdot.
Who We Are
AccessEnforcer Series
Contributors
Blogs We Read
Our Feeds
Blog Archive
-
►
2009
(37)
-
►
October
(7)
- Part III: Small Businesses under Attack from Organ...
- Top 10 things I learned from US Government Trusted...
- Part II: Small Businesses under Attack from Organi...
- Part I: Small Businesses under Attack from Organiz...
- Email malware leverages Conflicker & Microsoft bra...
- Third Tier Webinar: Behind the SBS 2008 Wizards
- FBI hauling in Phishing ring
-
►
August
(7)
- Data centers to target SMB market with new "Cloud ...
- "Patch Tuesday" reinforces role of managed service...
- Third Tier partnership expands expertise
- Ready Set Patch! Microsoft Patches Flaws.
- Fortinet Launches IPO pointing to positive growth ...
- NC Approves Sales Tax on Digital Downloads
- Using Twitter to see if Twitter is down
-
►
October
(7)
0 comments:
Post a Comment