|
Family: Denial of Service --> Category: attack
Multiple Vendor DNS Response Flooding Denial Of Service Vulnerability Scan
Vulnerability Scan Summary send malformed DNS query on port 53
Detailed Explanation for this Vulnerability Test
Multiple DNS vendors are reported susceptible to a denial of service
vulnerability (Axis Communication, dnrd, Don Moore, Posadis).
This vulnerability results in vulnerable DNS servers entering into an infinite
query and response message loop, leading to the consumption of network and
CPU resources, and denying DNS service to legitimate users.
A possible hacker may exploit this flaw by finding two vulnerable servers and
set up a 'ping-pong' attack between the two hosts.
Solution : http://www.uniras.gov.uk/vuls/2004/758884/index.htm
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|