Tech | July 22, 2008 | 1 comment

With DNS flaw now public, attack code imminent

source: http://www.pcworld.com/businesscenter/article/148784/with_dns_flaw_now_public_attack_code_im...

Image
TravG73
One day after a security company accidentally posted details of a serious flaw in the Internet's Domain Name System (DNS), hackers are saying that software that exploits this flaw is sure to pop up soon.

Several hackers are almost certainly already developing attack code for the bug, and it will most likely crop up within the next few days, said Dave Aitel, chief technology officer at security vendor Immunity. His company will eventually develop sample code for its Canvas security testing software too, a task he expects to take about a day, given the simplicity of the attack. "It's not that hard," he said. "You're not looking at a DNA-cracking effort."

The attack can be used to redirect victims to malicious servers on the Internet by targeting the DNS servers that serve as signposts for all of the Internet's traffic. By tricking an Internet service provider's (ISPs) servers into accepting bad information, attackers could redirect that company's customers to malicious Web sites without their knowledge.

  1. groups:
    Community,   News and Politics,   Tech
  2. tags:
    News News and Politics Tech Internet 3 more
  3.     
    |

1 comment // With DNS flaw now public, attack code imminent

  • Argon18
    • 0
      Argon18  

    • I guess that depends on whether or not the programs designed to exploit that flaw are better than the patches they already put in place to fix it.

      It's always a battle between the 2.

    • 3 years ago
more from Tech:
from the community

top videos