ATTACK CODE to exploit the DNS cache poisoning vulnerability partially revealed by its discoverer Dan Kaminsky and more recently detailed by others has just been published.
Metasploit, a free network probing and penetration testing toolset, added exploit code for the DNS flaw. A rogue DNS service has also been created to assist hackers with the exploit, according to Metasploit author HD Moore, who worked with a security researcher having the handle |)ruid to write the DNS flaw attack software.
The availability of such a readily useable attack tool should greatly increase the urgency for networking administrators to apply the patches needed to guard against such attacks. µ
See Also
Worldwide
DNS downed
DNS
security hole details leak out
DNS
Bug alive and kicking down under
DNS
hole patched - for now
L'Inq
Zdnet
Well, we're boned!!