[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: US-CERT Vulnerability Note VU#800113

Subject: Re: US-CERT Vulnerability Note VU#800113
From: Dave Pooser <email@hidden>
Date: Fri, 25 Jul 2008 09:34:56 -0500
Delivered-to: email@hidden
Delivered-to: email@hidden
Thread-index: AcjuY5ud5bOLSnkWo0id1Ln3QrIGyg==
Thread-topic: US-CERT Vulnerability Note VU#800113
User-agent: Microsoft-Entourage/12.11.0.080522

> Essentially if a user makes a DNS request to a DNS server the attacker can
> respond to the user with a bogus IP address.

Not exactly. If a user makes a DNS request to a DNS server, an attacker can
make *that DNS server* respond to *that user and any other user who queries
that server for an address in that zone* with *whatever DNS information they
like for that zone.*
-- 
Dave Pooser, ACSA
Manager of Information Services
Alford Media http://www.alfordmedia.com



 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden

This email sent to email@hidden

References:
	>Re: US-CERT Vulnerability Note VU#800113 (From: email@hidden)

Prev by Date: Re: US-CERT Vulnerability Note VU#800113
Next by Date: Re: US-CERT Vulnerability Note VU#800113
Previous by thread: Re: US-CERT Vulnerability Note VU#800113
Next by thread: Re: US-CERT Vulnerability Note VU#800113
Index(es):
- Date
- Thread

Home