Re: 2nd Exploit for DNS Cache Poisoning - RELEASED

• From: Tuc at T-B-O-H.NET
• Date: Thu Jul 24 15:46:50 2008

• List-archive: <http://mailman.nanog.org/pipermail/nanog>
• List-help: <mailto:[email protected]?subject=help>
• List-id: North American Network Operators Group <nanog.nanog.org>
• List-post: <mailto:[email protected]>
• List-subscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=subscribe>
• List-unsubscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=unsubscribe>

> - -- "Tuc at T-B-O-H.NET" <[email protected]> wrote:
> 
> >Not sure if anyone has seen yet, but there is a 2nd
> >exploit being circulated. I just picked it up on metasploits
> >SVN trunk....
> 
> I haven't seen that one yet, but I just ran across this:
> 
> http://www.milw0rm.com/exploits/6123
> 
> - - ferg
> 
> 
	Sorry, block from the new one :

===============/========================================================
Exploit ID:     CAU-EX-2008-0003
Release Date:   2008.07.23
Title:          bailiwicked_domain.rb
Description:    Kaminsky DNS Cache Poisoning Flaw Exploit for Domains
Tested:         BIND 9.4.1-9.4.2
Attributes:     Remote, Poison, Resolver, Metasploit
Exploit URL:    http://www.caughq.org/exploits/CAU-EX-2008-0003.txt
Author/Email:   I)ruid <druid (@) caughq.org>
                H D Moore <hdm (@) metasploit.com>
===============/========================================================

			Tuc/TBOH

• References:
  • Re: 2nd Exploit for DNS Cache Poisoning - RELEASED Paul Ferguson

• Prev by Date: RE: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked?
• Next by Date: Question: 2nd Exploit for DNS Cache Poisoning - RELEASED
• Date Index
• Thread Index
• Author Index
• Historical