It seems that the details of the recently discovered DNS problem found by Dan Kaminsky have leaked out. The details of problem had been kept hush hush while efforts to push out patches and fixes by vendors was co-ordinated.

However, it seems a leak on the Matasano Security Blog has given out a lot of information about the issue. The blog post was quickly pulled and it cannot be confirmed if the leaked information is exactly the same as the contents of the upcoming Black Hat presentation by Dan.

There is however a good description of the issue at large on the McAfee Labs Blog here, and a good description of the risks in the posting to Full Disclosure here. It should be noted that both DNS clients and server can be vulnerable to these issues although the potential impact of a successful exploitation is however more significant when a DNS server cache can be poisoned.

In the mean time it is recommended that you look to install the vendor patch for the issue as originally detailed here. It is also recommended that if you want to check out your DNS server to see if it is vulnerable you follow some of the suggestions from the SANS Dairy entry here.

Add this page to your favorite Social Bookmarking websites