Author Topic: DNS Server Vulnerability: Single DNS Packet can Bring Down the System  (Read 303 times)

0 Members and 1 Guest are viewing this topic.

Offline
*
https://gbhackers.com/critical-dnssec-flaw/

A new flaw has been discovered in DNSSEC, which, when exploited by threat actors, could result in the unavailability of technologies such as web browsing, email, and instant messaging. This new class of attacks has been termed “KeyTrap” by researchers.

Moreover, a threat actor could completely disable large parts of the worldwide internet. KeyTrap attacks affect not only DNS but also the applications using it. The “KeyTrap” class of attacks has been assigned with CVE-2023-50387, and the severity is yet to be categorized.  As of December 2023, 31.47% of the web clients used DNSSEC-validating DNS resolvers worldwide.

Im am not sure in how much our DNS server in the CWP servers are affected by this.. but maybe something for the " Einsteins " amongst us to look at.

Offline
****
Re: DNS Server Vulnerability: Single DNS Packet can Bring Down the System
« Reply #1 on: February 23, 2024, 03:17:39 PM »
Just a quick poll: do others read The Register and ArsTechnica?