What's new
By:

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Solved Are you SAD DNS? a.k.a. CVE-2020-25705

Wallace_n_Gromit

Wallace_n_Gromit

Senior Member
CVE-2020-25705 https://www.saddns.net/

[Discussion starts 1:15:13 into podcast]

blog.cloudflare.com

SAD DNS Explained

Researchers from UC Riverside and Tsinghua University found a new way to revive a decade-old DNS cache poisoning attack. Read our deep dive into how the SAD DNS attack on DNS resolvers works, how we protect against this attack in 1.1.1.1, and what the future holds for DNS cache poisoning attacks.
blog.cloudflare.com blog.cloudflare.com

thehackernews.com

SAD DNS — New Flaws Re-Enable DNS Cache Poisoning Attacks

Critical flaws re-enabled DNS cache poisoning attack on Linux, Windows, macOS, and FreeBSD.
thehackernews.com thehackernews.com

Hardware | TechRepublic

www.techrepublic.com www.techrepublic.com
 
Last edited:
pfSense using DNS Resolver (unbound) - seems to be ok...

pfSense disables sending of ICMP port unreachable packets by default...
 
Is there a way to prevent this vulnerability without paid dns? From what i can see only nextdns prevents it and rest is vulnerable.
 
Yes. Read the posts above yours.
 
You must log in or register to reply here.

Similar threads

Voxel
Voxel Custom firmware build for R7800 v. 1.0.2.80SF & v. 1.0.2.80.4SF & v. 1.0.2.80.5SF
8 9 10
Replies
183
Views
45K
R. Gerrits
R
Voxel
Voxel Custom firmware build for Orbi RBK50/RBK53 (RBR50, RBS50) v. 9.2.5.2.5SF-HW & v. 9.2.5.2.5.1SF-HW
6 7 8
Replies
140
Views
37K
mapretorius
M
Voxel
Voxel Custom firmware build for R9000/R8900 v. 1.0.4.44HF
Replies
5
Views
2K
Voxel
Voxel
Similar threads
Thread starter Title Forum Replies Date
P DNS config with VPN General Network Security 14
S Is there good VPN tunnel plain DNS filtering software for Windows? General Network Security 2
D News CVE-2024-53104 Linux Kernel Out-of-Bounds Write Vulnerability General Network Security 7
D News Windows Wi-Fi Driver Remote Code Execution Vulnerability CVE-2024-30078 General Network Security 2
sfx2000 News SSID Confusion attack, tracked as CVE-2023-52424 General Network Security 4

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 977 (members: 17, guests: 960)
Back
Top