US-CERT Says They Are Aware of DNS Exploit Code, Emphasizes Urgent Patching

Home
Blogs
Latest Recently Discussed Most Discussed Most Viewed
News
Latest Recently Discussed Most Discussed Most Viewed
Industry
Latest Most Viewed Leaderboard Participants: .CO Internet .INFO .ORG, Public Internet Registry Afilias Architelos ARI Registry Services BlueCat Networks CentralNic Cloud Registry DotConnectAfrica dotMobi Dyn Inc. Hostway MarkMonitor Neustar Minds + Machines Nixu Software RegistryPro Sedari Verisign
Community
Recently Featured Most Featured Most Active Most Read Recent Members Top 100 Leaderboard Alphabetical View Random View Recent Comments

Home / News

US-CERT Says They Are Aware of DNS Exploit Code, Emphasizes Urgent Patching

Jul 24, 2008 2:29 PM PST
Comments: 0
Views: 3,356

Print Comment

By CircleID Reporter

The United States Computer Emergency Readiness Team (US-CERT) has acknowledged that they are aware of the publicly available exploit code for a cache poisoning vulnerability in common DNS implementations. US-CERT is re-emphasizing the urgency of patching vulnerable DNS systems:

"Exploitation of this vulnerability may allow an attacker to cause a nameserver's clients to contact the incorrect, and possibly malicious hosts for particular services. As a result, web traffic, email and other important network data could be redirected to systems under the attacker's control. US-CERT strongly urges administrators to patch affected systems immediately."

An exploit code for the flaw allowing insertion of malicious DNS records into the cache of target nameservers was made public by a source called Metasploit very recently.

Related topics: Cyberattack, Cybercrime, DNS, Security

Print Comment

Comments

To post comments, please login or create an account.

Related Blogs

What Does It Take To Repair Trust? What Will It Take ICANN To Win Back "Trust"? (Part I)

Feb 08, 2012
Comments: 0

Is ICANN Opening up Public Comment Periods in Bad Faith?

Feb 07, 2012
Comments: 1

Phish or Fair?

Feb 07, 2012
Comments: 4

The FBI and Scotland Yard vs. Anonymous: Security Lessons

Feb 06, 2012
Comments: 0

World Notices That Verisign Said Three Months Ago That They Had a Security Breach Two Years Ago

Feb 02, 2012
Comments: 2

View More

Related News

DNSChanger Trojan Still Running on Half of Fortune 500s, US Govt

Feb 02, 2012
Comments: 0

Public-Private Cooperation Policy for Cyber Security Suggested by Commissioner Kroes

Jan 31, 2012
Comments: 0

DDoS Attacks Increased by 2000% in Past 3 Years, Asia Generating Over Half of Recent Attacks

Jan 31, 2012
Comments: 0

NASA Website Blocked Due to DNSSEC Error

Jan 25, 2012
Comments: 0

Websites Go Dark Protesting SOPA and PIPA, Senators Change Course

Jan 18, 2012
Comments: 0

View More

Topics

View More

Industry Updates – Sponsored Posts

.ORG COO Discusses Priorities With DailyVista, Pursuit of .NGO Domain

By PIR
Views: 392

StarHub to Acquire '.starhub' New Top-Level Domain

By ARI Registry Services
Views: 946

ARI Registry Services Signs 21 Contracts in the First Week of New TLD Applications

By ARI Registry Services
Views: 708

MarkMonitor to Exhibit at Internet Tech Policy Exhibition and Reception to be Held on Capitol Hill

By MarkMonitor
Views: 646

Sedari Signs With Dot Moscow Bidders

By Sedari
Views: 725

.ORG, The Public Interest Registry Welcomes Nancy Gofus As Chief Operating Officer

By PIR
Views: 721

Minds+Machines Works with .bayern

By Minds + Machines
Views: 658

Verisign to Award New Infrastructure Research Grants

By Verisign
Views: 709

Being a .PRO When Choosing a Registry Services Partner

By Afilias
Views: 580

UK Cabinet Office Looks to BlueCat Networks' Expertise and Best Practices for Securing PSN

By BlueCat Networks
Views: 490

dot Brand Makes Its Debut: Afilias Advises Companies to Act Now for Successful TLD Applications

By Afilias
Views: 696

BlueCat Networks Helps Organizations Transition to IPv6 with HP

By BlueCat Networks
Views: 468

BlueCat Networks to Host Webinar on DNS, DHCP and IPAM Featuring Independent Research Firm

By BlueCat Networks
Views: 641

Facets of gTLD Registry Technical Operations - Registry Services

By Cloud Registry
Views: 733

Technology and Finance Industries to Dominate New gTLD Applications

By ARI Registry Services
Views: 938

Nixu SNS 2.5 Series Gives Fresh Views on DNS

By Nixu Software
Views: 483

Afilias Says "No" to SOPA

By Afilias
Views: 1,547

Breaking the DNS: Another Look at How SOPA Could Be Destructive

By Dyn
Views: 1,398

IPAM and DHCPv6 Shake Hand in Nixu NameSurfer 7.1 Series

By Nixu Software
Views: 637

2011: A Year in Review, from the Yes2DotAfrica Campaign

By DotConnectAfrica
Views: 1,530

View More

Hot Topics

Security Sponsored by Verisign
Mobile Sponsored by dotMobi
DNS Sponsored by Neustar UltraDNS
DNSSEC Sponsored by Afilias
Top-Level Domains Sponsored by Minds + Machines

View More

Managed Hosting by
Hostway

DNS Services by
UltraDNS

Sections: Home | Featured Blogs | News Briefs | Industry Updates | Topics | Community
RSS Feeds, Email Updates, Mobile Edition and More: CircleID Extras
About: About CircleID | Media Coverage | CircleID Blog | Contact | Advertising Programs
Terms & Policies: Codes of Conduct | Privacy Policy | Terms of Use

Copyright © 2002-2012 CircleID. Iomemo Inc. All rights reserved unless where otherwise noted.
Local Time: Sunday, February 12, 2012 04:37 AM PST – Page Load: 0.3874 Sec.