.

Attack Code Published For Big DNS Flaw

<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Thu Jul 24, 2008 2:02 pm

Attack Code Published For Big DNS Flaw

Larry Seltzer reports on his PC Mag Security Blog:


It was just a matter of time after the premature release of details on the attack: attack code for the big DNS vulnerability patched in many products earlier this month has been released.

The exploit code allows for the insertion of malicious records into the cache of targeted DNS servers. It has been posted to Metasploit whose creator, HD Moore, wrote the exploit with a researcher named "|)ruid " from the Computer Academic Underground.

If you're responsible for a DNS server—not just Windows, but all the major ones—and have not applied this patch, you and your users are at great risk. Patch now.



http://blogs.pcmag.com/securitywatch/20 ... or_big.php

Don
CISSP, MCSE, CSTA, Security+ SME
<<

apollo

Full Member
Full Member

Posts: 146

Joined: Fri Apr 04, 2008 7:44 pm

Post Thu Jul 24, 2008 9:52 pm

Re: Attack Code Published For Big DNS Flaw

The module is already in the subversion tree for metasploit.  There are 2 modules, one for hosts, one for domains.  If you want to just check to see if you are vulnerable, the module has been coded with the check command to test without exploiting.
CISSP, CSSLP, MCSE+Security, MCTS, CCSP, GPEN, GWAPT, GCWN, NOP, OSCP, Security+

Return to Malware

Who is online

Users browsing this forum: No registered users and 1 guest

cron
.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software