Re: [bugtraq] Re: [Full-disclosure] CAU-EX-2008-0002: Kaminsky DNS Cache Poisoning
- From: "Tuc at T-B-O-H.NET" <ml@xxxxxxxxxxx>
- Date: Fri, 25 Jul 2008 16:09:07 -0400 (EDT)
Thats a known issue. May be on any *BSD system, not sure
On FreeBSD 7.0-STABLE (updated on Fri May 23) it fails to create raw
socket even when running as root:
...
[-] This module is configured to use a raw IP socket. On Unix systems,
only the root user is allowed to create raw sockets.Please run the
framework as root to use this module.
[*] Attempting to inject poison records for example.com.'s nameservers
into 202.72.241.4:55088...
[-] Auxiliary failed: undefined method `sendto' for nil:NilClass
about Windows. The authors were alerted, but don't have a time to
resolution set. I guess Linux is the default of the hack platform. ;)
Tuc/TBOH
- References:
- Prev by Date: SECOBJADV-2008-02: Cygwin Installation and Update Process can be Subverted Vulnerability
- Next by Date: Re: [Full-disclosure] Vim: Insecure Temporary File Creation During Build: Arbitrary Code Execution
- Previous by thread: Re: [Full-disclosure] CAU-EX-2008-0002: Kaminsky DNS Cache Poisoning Flaw Exploit
- Next by thread: [SECURITY] [DSA 1616-1] new clamav packages fix denial of service
- Index(es):
Relevant Pages
|
