DNS Security Flaw Details Leaked To The Public

July 23, 2008

Details of a Domain Name System (DNS) flaw discovered by security researcher Dan Kaminsky have leaked out to the general public....Washington (ChattahBox) – Details of a Domain Name System (DNS) flaw discovered by security researcher Dan Kaminsky have leaked out to the general public.

Kaminsky, the director of penetration testing for IOActive, was set to reveal the DNS security flaw next month at the Black Hat conference held in Las Vegas.

Instead, the details have leaked onto the internet on a security blog.

This is a major flaw, which can be used to launch DNS cache poisoning attacks, redirecting internet traffic to any site an attacker pleases.

The leak came after reverse engineering expert and CEO of Zynamics, Halvar Flake posted his thoughts about the DNS flaw on a blog July 21.

After that, the firm Matasano confirmed the flaw on their own company blog, exposing it to the world.

Kaminsky is calling for an immediate patch to the DNS flaw.


Comments

Got something to say? **Please Note** - Comments may be edited for clarity or obscenity, and all comments are published at the discretion of ChattahBox.com - Comments are the opinions of the individuals leaving them, and not of ChattahBox.com or its partners. - Please do not spam or submit comments that use copyright materials, hearsay or are based on reports where the supposed fact or quote is not a matter of public knowledge are also not permitted.