anonymous Zonetransfer (AXFR) exploatation
- From: xx yy <thenucker2004@xxxxxxxxx>
- Date: Wed, 12 Mar 2008 15:55:18 -0700 (PDT)
During some research I came across some server that have anonymous Zonetransfer (AXFR) allowed.
Is there a working attack for a DNS server that has anonymous Zonetransfer (AXFR) allowed ?
I will appreciate any detailed description of what can be done to dig deeper into this potential vulnerability.
Also if anyone knows of some good resources for AXFR exploatation please share.
Thanks
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!
http://www.cenzic.com/downloads
------------------------------------------------------------------------
- Follow-Ups:
- Re: anonymous Zonetransfer (AXFR) exploatation
- From: LordDoskias
- RE: anonymous Zonetransfer (AXFR) exploatation
- From: Shenk, Jerry A
- Re: anonymous Zonetransfer (AXFR) exploatation
- From: Jamie Riden
- Re: anonymous Zonetransfer (AXFR) exploatation
- Prev by Date: Program to populate forms
- Next by Date: Inguma version 0.0.7.2 released
- Previous by thread: Program to populate forms
- Next by thread: Re: anonymous Zonetransfer (AXFR) exploatation
- Index(es):
