Critical DNS Flaw Patched in Coordinated ReleaseCategory: Internet
Posted: July 8, 2008 09:10PM
A critical flaw in the domain name system (DNS) was uncovered earlier this year that would have allowed Internet traffic to be redirected to servers controlled by attackers. Known as DNS cache poisoning, the flaw was a basic design issue with the DNS and affected many products and was not isolated to a single vendor. So pervasive was the issue that it affects virtually all domain name servers on the Internet. In a break from recent problems where researchers have sold the discoveries to security companies prior to releasing news to vendors, researcher Dan Kaminsky of IOActive Inc. first notified the U.S. Computer Emergency Readiness Team along with multiple vendors. In a coordinated effort, researchers from 16 different companies agreed to keep the discovery under wraps until a fix could be made available. That happened today as Microsoft, CISCO and others made patches available to correct the problem.