BailiWicked Metasploit modules updated for automatic tuning

By
Don Ankney
on July 28, 2008 5:54 PM | | Comments (0) | TrackBacks (1)

The Metasploit BailiWicked modules for Kaminsky's DNS vulnerabilities have been updated for automatic tuning.

From the Metasploit blog:

The bailiwicked modules (host and domain) were updated today to include the ability to predict the time window between the outgoing request from the target nameserver and the response from the real nameserver(s). This measurement is used to tune the number of spoofed replies sent by the exploit. The result is a big increase in exploit reliability, especially when the target domain has a ton of nameservers (Yahoo has eight) or changes its responsiveness during the test (BIND tends to slow down when it has a full cache). [From BailiWicked Automatic Tuning]

Categories:

Tags:

1 TrackBacks

Listed below are links to blogs that reference this entry: BailiWicked Metasploit modules updated for automatic tuning.

TrackBack URL for this entry: http://snackfin.com/mt/mt-tb.cgi/65

Kaminsky DNS vulnerability now in metasploit module form from SNACKFIN.COM on July 28, 2008 1:57 PM

It looks like Dan Kaminsky's DNS vulnerability has been released as a pair of metasploit modules, which means the script kiddies are about to unleash it on the unpatched (so patch already). From the Metasploit Blog: So, on to our... Read More

Leave a comment

Search

Categories

Tag Cloud

Pages

Monthly Archives

Powered by Movable Type 4.12