Entries (RSS)  |  Comments (RSS)

DNS Patches released today for many platforms

If you’re responsible for DNS at your organization, I urge you to immediately download updates for your DNS servers and patch them, today. Dan Kaminsky and other members of the DNS community announce that they are releasing patches for an extremely serious cache resolver issue impacting many vendors of DNS software, including ISC BIND and Microsoft DNS.

The CERT advisory is here.

A partial overview, from the PDF released by Secuonis…


On July 8th, technology vendors from across the industry will simultaneously release  patches for their products to close a major vulnerability in the underpinnings of the Internet. While most home users will be automatically updated, it’s important for all businesses to immediately update their networks. This is the largest synchronized security update in the history of the Internet, and is the result of hard work and dedication across dozens of organizations. 

Earlier this year, professional security research Dan Kaminsky discovered a major issue in how Internet addresses are managed (Domain Name System, or DNS). This issue was in the design of DNS and not limited to any single product. DNS is used by every computer on the Internet to know where to find other computers. Using this issue, an attacker could easily take over portions of the Internet and redirect users to arbitrary, and malicious, locations. For example, an attacker could target an Internet Service Provider (ISP), replacing the entire web — all search engines, social networks, banks, and other sites — with their own malicious content. Against corporate environments, an attacker could disrupt or monitor operations by rerouting network traffic traffic, capturing emails and other sensitive business data. 

Exact details on this are being withheld for the safety of the Internet; I prefer full disclosure, but that doesn’t seem to be the case here given that the hole is so large and vulnerability so widespread. 

 

This entry was posted on Tuesday, July 8th, 2008 at 3:08 pm and is filed under application security, operations, security, systems administration. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

 

2 Responses to “DNS Patches released today for many platforms”

  1. 1 Tim

    Thanks for spreading the words about this John- its shockingly widespread. From the Sun side,we have patches already created and up on sunsolve.sun.com. I hope this vulnerability gets patched on a large scale quickly….thanks again for highlighting this.

  2. 2 Tim

    Thanks for spreading the words about this John- its shockingly widespread. From the Sun side,we have patches already created and up on sunsolve.sun.com. I hope this vulnerability gets patched on a large scale quickly….thanks again for highlighting this.

 

Leave a Reply