Comments on: CNC DNS Server Cache Poisoning http://www.thedarkvisitor.com/2008/08/cnc-dns-server-cache-poisoning/ Sat, 24 Dec 2011 19:52:10 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Bookmarks about Dns http://www.thedarkvisitor.com/2008/08/cnc-dns-server-cache-poisoning/comment-page-1/#comment-1123 Bookmarks about Dns Sat, 04 Oct 2008 19:00:42 +0000 http://www.thedarkvisitor.com/?p=440#comment-1123 [...] - bookmarked by 6 members originally found by cancerus on 2008-09-17 CNC DNS Server Cache Poisoning http://www.thedarkvisitor.com/2008/08/cnc-dns-server-cache-poisoning/ - bookmarked by 1 members [...] [...] – bookmarked by 6 members originally found by cancerus on 2008-09-17 CNC DNS Server Cache Poisoning http://www.thedarkvisitor.com/2008/08/cnc-dns-server-cache-poisoning/ – bookmarked by 1 members [...]

]]> By: CBRP1R8 http://www.thedarkvisitor.com/2008/08/cnc-dns-server-cache-poisoning/comment-page-1/#comment-893 CBRP1R8 Mon, 25 Aug 2008 13:43:34 +0000 http://www.thedarkvisitor.com/?p=440#comment-893 What is suprising to me about all this is that, this latest DNS cache exploit has been known about since July. Most legitimate companies and countries have upgraded their DNS servers (including all ISP's) by late July when the exploits started to leak out (metasploit etc). Then Just after thet Kaminsky himself gave a short briefing press conference to urge people to upgrade. Then at Black Hat at the beginning of the month, the cat was let out of the bag and everyone found out the in's and out's of the vulnerability. It only takes about 15 - 20 seconds to exploit this properly on an unpatched server. I'm highly surprised, that China's largest ISP seems to have not patched their own, when this is the country of origination of quite a lot of these vulns/exploits. What is suprising to me about all this is that, this latest DNS cache exploit has been known about since July. Most legitimate companies and countries have upgraded their DNS servers (including all ISP’s) by late July when the exploits started to leak out (metasploit etc). Then Just after thet Kaminsky himself gave a short briefing press conference to urge people to upgrade. Then at Black Hat at the beginning of the month, the cat was let out of the bag and everyone found out the in’s and out’s of the vulnerability. It only takes about 15 – 20 seconds to exploit this properly on an unpatched server.

I’m highly surprised, that China’s largest ISP seems to have not patched their own, when this is the country of origination of quite a lot of these vulns/exploits.

]]>