[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] NISCC DNS Protocol Vulnerability

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] NISCC DNS Protocol Vulnerability
From: Markus Jansson <seemyhomepage@xxxxxxxxxxxxxxxxxxxx>
Date: Fri, 28 Apr 2006 22:59:05 +0300

http://www.niscc.gov.uk/niscc/vulnAdv-en.html

"The vulnerabilities described in this advisory affect implementationsof the Domain Name System (DNS) protocol. Many vendors include supportfor this protocol in their products and may be impacted to varyingdegrees, if at all."


"Impact:
..DoS...memory corruption...stack corruption...buffer overflow exploits"

"Vendors affected:

Cisco, Delegate, Ethereal, Hitachi, ISC, Juniper Networks, MyDNS, pdnsd,Sun, Wind River & Microsoft"


Whole stuff in .pdf format
http://www.niscc.gov.uk/niscc/docs/re-20060425-00312.pdf?lang=en



--
ï»¿My computer security & privacy related homepage
http://www.markusjansson.net
Use HushTools or GnuPG/PGP to encrypt any email
before sending it to me to protect our privacy.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: Re: [Full-disclosure] MSIE (mshtml.dll) OBJECT tag vulnerability
Next by Date: Re: [Full-disclosure] bypassing Windows Domain Group Policy Objects
Previous by thread: RE: [Full-disclosure] Exploit/POC Database
Next by thread: [Full-disclosure] Yahoo Messenger Source Code Released: I.M Window Code
Index(es):
- Date
- Thread