Slashdot Mirror

← Back to Stories (view on slashdot.org)

Attack Code Published For DNS Vulnerability

Posted by samzenpus on from the protect-ya-neck dept.

get_Rootin writes "That didn't take long. ZDNet is reporting that HD Moore has released exploit code for Dan Kaminsky's DNS cache poisioning vulnerability into the point-and-click Metasploit attack tool. From the article: 'This exploit caches a single malicious host entry into the target nameserver. By causing the target nameserver to query for random hostnames at the target domain, the attacker can spoof a response to the target server including an answer for the query, an authority server record, and an additional record for that server, causing target nameserver to insert the additional record into the cache.' Here's our previous Slashdot coverage."

17 of 205 comments (clear)

  1. Google by bdasd5 · · Score: 5, Funny

    And here I am, thinking I was on Google.

  2. The Book Of Internets, Chapter Three, Verse Twelve by Aussenseiter · · Score: 5, Funny

    And lo, all unpatched websites were rendered unto Goatse.

  3. DNS sploit result by hostyle · · Score: 2, Funny

    %> /usr/bin/treaceroute fruity.stuff

    traceroute to fruity.stuff (1.2.3.4), 30 hops max, 42 byte packets
    evil bit detected. re-routing ...

    --
    Caesar si viveret, ad remum dareris.
  4. I know by Daimanta · · Score: 4, Funny

    I exploited this and let a huge cache of people visit my site(127.0.0.1) in stead of the site they wanted to go. It was kickass.

    --
    Knowledge is power. Knowledge shared is power lost.
    1. Re:I know by Anonymous Coward · · Score: 3, Funny

      HAHA, fool! now that I know your ip address, I shall soon hack you into oblivion!

    2. Re:I know by Anpheus · · Score: 4, Funny

      Don't worry, I just disabled his intern

      [CARRIER LOST]

  5. Re:CONFIRMED: Steve Jobs has AIDS !! by DurendalMac · · Score: 3, Funny

    For fuck's sake, whoever is DDoSing 4chan needs to stop already! The tards have spread out and are trolling the whole internet. At least the 4chan cesspool kept them all mostly in one place. Now they're left with nowhere to go and are taking their idiocy all over the internet!

  6. Re:Here we go... by Vectronic · · Score: 4, Funny

    "And I can hear just about any song I ever would want to hear in less than a minute."

    Shit, you should check out some of the songs that are longer than a minute, there's some good ones out there, but, yes...those quick little punk ditties are good too.

  7. Guess now there's no need by al0ha · · Score: 1, Funny

    to watch the Black Hat DNS vulnerability webcast tomorrow. My only question is, what took so long?

    --
    Did you ever wake up in the morning, with a Zombie Woof behind your eyes? -- FZ
  8. Re:Here we go... by Mordok-DestroyerOfWo · · Score: 2, Funny

    Maybe he just speeds them up so they fit to a nice round minute. I for one would love to hear Freebird sped up so it lasts a minute.

    --
    "Never let your sense of morals prevent you from doing what is right" - Salvor Hardin
  9. Re:DNS Glue poisoning was already known... by harlows_monkeys · · Score: 2, Funny

    That's not the attack. Try again.

  10. Re:More edifying than TFA's script by PRMan · · Score: 1, Funny

    This link is in French. I'd rather read scripts. At least they're in Geek.

    --
    Peter predicted that you would "deliberately forget" creation 2000 years ago...
  11. Re:And the "fix" isn't by pfleming · · Score: 2, Funny

    Setec Astronomy

  12. Re:Here we go... by ILuvRamen · · Score: 2, Funny

    And also a solar storm can knock out the entire internet and power grid. And at any time we can be hit by a gamma ray burst or a black hole from the LHC can suck us all up. Yeah, internet security is never going to be 100%, DUH! Is it really even worth mentioning?

    --
    Google's Super Secret Search Algorithm: SELECT @search_results FROM internet WHERE @search_results = 'good'
  13. Re:Here we go... by MadMidnightBomber · · Score: 4, Funny
    Can someone please send me the HOSTS file for the Internet?

    kthxbye

    --
    "It doesn't cost enough, and it makes too much sense."
  14. Re:CONFIRMED: Steve Jobs has AIDS !! by Ant+P. · · Score: 2, Funny

    The idea of /b/ spreading outside of 4chan terrifies me more than the thought that my DNS might get hijacked, TBH.

  15. Re:Help Please by totally+bogus+dude · · Score: 2, Funny

    Unfortunately it.slashdot.org has already been poisoned; you actually posted that request to an elaborate mock-up of the real slashdot, and the replies are coming from l33t hackers who are supplying you with false DNS servers which currently appear to work correctly.

    You'd best disconnect from the internet and burn your computer. It's the only way to be sure.