DNSpooq PoC - dnsmasq cache poisoning (CVE-2020-25686, CVE-2020-25684, CVE-2020-25685)

1/26/2021 1 Comment

DNSpooq PoC - dnsmasq cache poisoning (CVE-2020-25686, CVE-2020-25684, CVE-2020-25685)

Sensors have ingested an exploit PoC that targets:
“7 vulnerabilities found in dnsmasq, an open-source DNS forwarding software in common use. Dnsmasq is very popular, and we have identified approximately 40 vendors whom we believe use dnsmasq in their products, as well as major Linux distributions.” Potential Impact “includes DNS cache poisoning, remote code execution and others. According to our internet-based research, prominent users of dnsmasq seem to include Cisco routers, Android phones, Aruba devices, Technicolor, and Red-Hat, as well as Siemens, Ubiquiti networks, Comcast.” - www.jsof-tech.com

PoC:
https://github.com/knqyf263/dnspooq

Blog:
https://www.jsof-tech.com/disclosures/dnspooq/

Paper:
https://www.jsof-tech.com/wp-content/uploads/2021/01/DNSpooq-Technical-WP.pdf

#cyberthreatintelligence #infosec #cybersecurity #informationsecurity #threatintelligence #networksecurity #sec #security #tools #offensivesecurity #pentesting #redteam #blueteam

1 Comment

JordanAlbert link

3/29/2021 04:11:26 am

Great experience, Thanks for the valuable and useful information. Very useful advice in this particular article. For any queries related to <a href="https://router-support.us/configure-belkin-router-without-cd">Configure Belkin Router Without Cd</a> <a href="https://router-support.us/technicolor-router-login">Technicolor Router Login</a> Check in to our site..!!

YOUR CART

DNSpooq PoC - dnsmasq cache poisoning (CVE-2020-25686, CVE-2020-25684, CVE-2020-25685)

Leave a Reply.

Archives