Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)

To: Amit Klein <aksecurity@xxxxxxxxx>
Subject: Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
From: Tim Newsham <newsham@xxxxxxxx>
Date: Fri, 27 Jul 2007 08:54:33 -1000 (HST)
Cc: Gadi Evron <ge@xxxxxxxxxxxx>, Jamie Riden <jamie.riden@xxxxxxxxx>, bugtraq@xxxxxxxxxxxxxxxxx
In-reply-to: <46AA4537.5030400@xxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <20070724174035.9273.qmail@xxxxxxxxxxxxxxxxx> <17b0fcab0707241318q74b94b17r702c64799b23a6@xxxxxxxxxxxxxx> <Pine.LNX.4.62.0707262338400.22355@xxxxxxxxxxxx> <46AA4537.5030400@xxxxxxxxx>

"it's not like this hasn't been reported, and fixed, many times by manyothers" - so if it's fixed so many times, how come it was still vulnerable,and ISC had to issue their patches?

Because its just a 16-bit field. DNS is broken. Cache poisoning willhappen. Those are the facts on the ground. The only argument left

is the degree of brokenness.

-Amit


Tim Newsham
http://www.thenewsh.com/~newsham/

Follow-Ups:
- Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
  - From: Amit Klein

References:
- Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
  - From: securityfocus
- Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
  - From: Jamie Riden
- Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
  - From: Gadi Evron
- Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
  - From: Amit Klein

Prev by Date: Anti XSS AJAX
Next by Date: Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
Previous by thread: Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
Next by thread: Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
Index(es):
- Date
- Thread