Re: [bugtraq] Re: [Full-disclosure] CAU-EX-2008-0002: Kaminsky DNS Cache Poisoning

To: ganbold@xxxxxxxxxxxxx (Ganbold)
Subject: Re: [bugtraq] Re: [Full-disclosure] CAU-EX-2008-0002: Kaminsky DNS Cache Poisoning
From: "Tuc at T-B-O-H.NET" <ml@xxxxxxxxxxx>
Date: Fri, 25 Jul 2008 16:09:07 -0400 (EDT)
Cc: druid@xxxxxxxxxx, full-disclosure@xxxxxxxxxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx (bugtraq)
In-reply-to: <48895415.4040304@xxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

> 
> On FreeBSD 7.0-STABLE (updated on Fri May 23) it fails to create raw 
> socket even when running as root:
> ...
> [-] This module is configured to use a raw IP socket. On Unix systems, 
> only the root user is allowed to create raw sockets.Please run the 
> framework as root to use this module.
>  
> [*] Attempting to inject poison records for example.com.'s nameservers 
> into 202.72.241.4:55088...
> [-] Auxiliary failed: undefined method `sendto' for nil:NilClass
> 
        Thats a known issue. May be on any *BSD system, not sure 
about Windows. The authors were alerted, but don't have a time to 
resolution set. I guess Linux is the default of the hack platform. ;)

                Tuc/TBOH

References:
- Re: [Full-disclosure] CAU-EX-2008-0002: Kaminsky DNS Cache Poisoning Flaw Exploit
  - From: Ganbold

Prev by Date: Re: [Full-disclosure] Vim: Insecure Temporary File Creation During Build: Arbitrary Code Execution
Next by Date: ZDI-08-045: Apple Safari StyleSheet ownerNode Heap Corruption Vulnerability
Previous by thread: Re: [Full-disclosure] CAU-EX-2008-0002: Kaminsky DNS Cache Poisoning Flaw Exploit
Next by thread: [USN-629-1] Thunderbird vulnerabilities
Index(es):
- Date
- Thread