Carding Forum
Professional
- Messages
- 2,788
- Reaction score
- 1,177
- Points
- 113
Leading tech giants have already recognized the vulnerability of their systems.
Researchers have discovered a new dangerous vulnerability in the domain name system (DNS), which can be used to conduct a special attack, called "TuDoor"by researchers. This attack can be used to poison the DNS cache, trigger a denial-of-service (DoS) state, and deplete resources, making it a significant threat to Internet security.
Experiments by experts have confirmed that the TuDoor attack is possible and has serious consequences in real conditions. A total of 24 popular DNS programs, including BIND, PowerDNS, and Microsoft DNS, are vulnerable to TuDoor. Attackers can perform cache poisoning or DoS attacks against vulnerable resolvers using just a few specially crafted packets in less than one second.
To assess the scale of the problem, the researchers tested 16 popular Wi-Fi router models, 6 router operating systems, 42 public DNS services, and about 1.8 million public DNS resolvers. The results showed that TuDoor can operate 7 routers (and their operating systems), 18 public DNS services, and 424,652 (23.1%) open DNS resolvers.
The researchers followed best practices for responsible disclosure, notifying all affected vendors of the vulnerabilities they found. As a result, 18 of them, including BIND, Chrome, Cloudflare and Microsoft, confirmed the data and discussed measures to fix it. In addition, 33 CVE identifiers were assigned for the detected vulnerabilities, and an online tool for detecting them was proposed.
New vulnerabilities like TuDoor highlight the need for constant vigilance and collaboration between researchers, developers, and users. Only by working together can we create a more secure digital space where innovation and protection go hand in hand.
Source
Researchers have discovered a new dangerous vulnerability in the domain name system (DNS), which can be used to conduct a special attack, called "TuDoor"by researchers. This attack can be used to poison the DNS cache, trigger a denial-of-service (DoS) state, and deplete resources, making it a significant threat to Internet security.
Experiments by experts have confirmed that the TuDoor attack is possible and has serious consequences in real conditions. A total of 24 popular DNS programs, including BIND, PowerDNS, and Microsoft DNS, are vulnerable to TuDoor. Attackers can perform cache poisoning or DoS attacks against vulnerable resolvers using just a few specially crafted packets in less than one second.
To assess the scale of the problem, the researchers tested 16 popular Wi-Fi router models, 6 router operating systems, 42 public DNS services, and about 1.8 million public DNS resolvers. The results showed that TuDoor can operate 7 routers (and their operating systems), 18 public DNS services, and 424,652 (23.1%) open DNS resolvers.
The researchers followed best practices for responsible disclosure, notifying all affected vendors of the vulnerabilities they found. As a result, 18 of them, including BIND, Chrome, Cloudflare and Microsoft, confirmed the data and discussed measures to fix it. In addition, 33 CVE identifiers were assigned for the detected vulnerabilities, and an online tool for detecting them was proposed.
New vulnerabilities like TuDoor highlight the need for constant vigilance and collaboration between researchers, developers, and users. Only by working together can we create a more secure digital space where innovation and protection go hand in hand.
Source
