Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses, which allows remote attackers to cause a denial of service (traffic amplification) via DNS queries with spoofed source IP addresses.
No PoCs from references.
- https://github.com/0xjessie21/Pelindo-Storm
- https://github.com/C4ssif3r/nmap-scripts
- https://github.com/CVEDB/awesome-cve-repo
- https://github.com/pcastagnaro/dns_amplification_scanner
- https://github.com/stran0s/stran0s