Submission + - Exploit Lets Spoofed Addresses Masquerade as Legit on Linux Servers (arstechnica.com)

Submitted by shoor on Wednesday November 17, 2021 @02:09PM

shoor writes: The exploit may allow malicious hackers to redirect inquiries to phishing and other malware sites that are replicas of legitimate sites. A new DNS spec was supposed to randomize the port DNS queries come from, closing off an exploit that allowed attackers to introduce a malicious IP address into a DNS resolver's cache. Under the new spec, an ICMP probe can change internal state in the Linux Kernel in a way that can be observed through a side channel.

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Exploit Lets Spoofed Addresses Masquerade as Legit on Linux Servers

Load All Comments

Search 0 Comments Log In/Create an Account

Comments Filter:

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

The opulence of the front office door varies inversely with the fundamental solvency of the firm.

Submission + - Exploit Lets Spoofed Addresses Masquerade as Legit on Linux Servers (arstechnica.com)

Exploit Lets Spoofed Addresses Masquerade as Legit on Linux Servers More Login

Exploit Lets Spoofed Addresses Masquerade as Legit on Linux Servers

Slashdot Top Deals

Slashdot