Results 1 to 1 of 1

Thread: Predictable DNS Transaction IDs in Microsoft DNS Server

Thread Tools
- Show Printable Version

15-11-2007, 01:03 AM #1
newsbot

View Profile

View Forum Posts

Private Message
Senior Member

Join Date

Sep 2002

Location

Thailand

Posts

3,766
Microsoft DNS server generates predictable DNS transaction IDs. If the server is configured to allow recursive queries it is possible to insert fake records in the DNS cache (DNS cache poisoning) by guessing the next transaction ID that the server will use and sending a spoofed DNS reply to the server. To observe the transaction IDs an attacker needs to control a DNS server that is authoritative for some domain and to be able to send a recursive queries to the caching Microsoft DNS server

http://www.securiteam.com/windowsntf...U00F15KAO.html

clone 'em all
Reply With Quote

Quick Navigation Exploits Top

« Previous Thread | Next Thread »

Similar Threads

Microsoft เปิดตัว SQL Server 2008

By musashishime in forum ข่าวสารด้าน IT ใหม่ๆ

Replies: 0
Last Post: 11-08-2008, 05:17 AM
Microsoft Office 2007 Server

By SheLLniX in forum Window Application

Replies: 0
Last Post: 30-06-2008, 10:42 AM
Debian OpenSSL Predictable

By aratanawa in forum Hacking, Exploit Articles/Tutorial/Techniques

Replies: 0
Last Post: 15-05-2008, 10:32 PM
Apache Web Server htpasswd Predictable Salt Weakness

By newsbot in forum Exploits

Replies: 0
Last Post: 15-02-2008, 02:59 PM
OpenBSD DNS Cache Poisoning and Multiple O/S Predictable IP ID Vulnerability

By newsbot in forum Exploits

Replies: 0
Last Post: 13-02-2008, 07:03 PM

Members who have read this thread : 0

Actions : (View-Readers)

There are no names to display.

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is On
HTML code is Off

All times are GMT +7. The time now is 06:30 AM.

Hide Hack By vFCoders