Access Keys:
Skip to content (Access Key - 0)
ICONS Beta

What do you think of the wiki?
Please contact us with feedback or bug reports.



Cisco Security Patch Released

Cisco has announced multiple products are vulnerable to a DNS cache poisoning attack due to their use of insufficiently randomized DNS transaction IDs and UDP source ports in the DNS queries they produce.

This may allow an attacker to more easily forge DNS answers that can poison DNS caches.

To exploit this vulnerability an attacker must be able to cause a vulnerable DNS server to perform recursive DNS queries. Therefore, DNS servers that are only authoritative, or servers where recursion is not allowed, are not affected.

Cisco has released free software updates that address this vulnerability.
The Cisco Security Advisory.

1 Comment

comments.show.hide

  1. Jul 18, 2008

    Editor

    I found another interesting reference at US-CERT with more detail info. http://www.kb.cert.org/vuls/id/800113


Security News

Blog Posts

  • Blog post: Cisco DNS Patch created by
    Editor
    Jul 18, 2008
    Security



    • Security Bookmarks

    Internet experts are siding overwhelmingly with ICANN, arguing that the crucial responsibility of making sure users can trust the technical equivalent of the internet's phone book belongs in the hands of the net's main oversight body.

    Posted 1308 days ago | View Bookmark Page
    0 Comments

    A proposal [PDF, 276K] to sign the root zone file with Domain Name System Security Extensions, or DNSSEC, technology was released by ICANN today.

    Posted 1310 days ago | View Bookmark Page
    0 Comments

    Starting Thursday morning, the U.S. government is seeking comment on who should create and vouch for the internet's most crucial document – the root zone file – that serves as the cornerstone of the system that lets users get to websites and emails find their way to inboxes.

    Posted 1314 days ago | View Bookmark Page
    0 Comments

    THE quick and ferocious nature of cyber attacks on government must be recognised in the next generation of security, a previously unreleased report from the Attorney-General's Department urges.

    Posted 1324 days ago | View Bookmark Page
    0 Comments

    Philippine websites remain at risk of being redirected even if their Internet service providers (ISPs) have patched their DNS servers.

    Posted 1345 days ago | View Bookmark Page
    0 Comments
    View More 
      Add Bookmark
    Click to add...     		 



    Adaptavist Theme Builder (4.2.3) Powered by Atlassian Confluence 3.5.13, the Enterprise Wiki