Re: Symantec Enterprise Firewall DNSD cache poisoning Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Symantec Enterprise Firewall DNSD cache poisoning Vulnerability
From: Peter Jelver <pj@xxxxxxx>
Date: 18 Jun 2004 17:16:03 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

In-Reply-To: <1087321536.7690.85.camel@xxxxxxxxxxxxxxxxxxxxx>

This has yet to be investigated and commented by the vendor, but the SEF 
firewall dnsd has the option to configure "forwarders" - dnsd will defer all 
requests to these. A mitigating strategy until the vendor has an answer could 
be to configure forwarders pointing at ISP nameservers.

Peter Jelver

http://www.esec.dk

Prev by Date: Re: Linux Kernel i2c Integer Overflow Vulnerability
Next by Date: Re: Caveat Lector: Beastie Boys Evil
Previous by thread: Re: Symantec Enterprise Firewall DNSD cache poisoning Vulnerability
Next by thread: [ GLSA 200406-09 ] Horde-Chora: Remote code execution
Index(es):
- Date
- Thread