Menu
What's new
By:
Filters Better Search

Solved Are you SAD DNS? a.k.a. CVE-2020-25705

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Wallace_n_Gromit

Wallace_n_Gromit

Senior Member
CVE-2020-25705 https://www.saddns.net/

[Discussion starts 1:15:13 into podcast]

blog.cloudflare.com

SAD DNS Explained

Researchers from UC Riverside and Tsinghua University found a new way to revive a decade-old DNS cache poisoning attack. Read our deep dive into how the SAD DNS attack on DNS resolvers works, how we protect against this attack in 1.1.1.1, and what the future holds for DNS cache poisoning attacks.
blog.cloudflare.com blog.cloudflare.com

thehackernews.com

SAD DNS — New Flaws Re-Enable DNS Cache Poisoning Attacks

Critical flaws re-enabled DNS cache poisoning attack on Linux, Windows, macOS, and FreeBSD.
thehackernews.com thehackernews.com

Hardware | TechRepublic

www.techrepublic.com www.techrepublic.com
 
Last edited:
pfSense using DNS Resolver (unbound) - seems to be ok...

pfSense disables sending of ICMP port unreachable packets by default...
 
Is there a way to prevent this vulnerability without paid dns? From what i can see only nextdns prevents it and rest is vulnerable.
 
Yes. Read the posts above yours.
 
You must log in or register to reply here.

Similar threads

Voxel
Voxel Custom firmware build for R7800 v. 1.0.2.80SF & v. 1.0.2.80.4SF & v. 1.0.2.80.5SF
8 9 10
Replies
183
Views
41K
R. Gerrits
R
Voxel
Voxel Custom firmware build for Orbi RBK50/RBK53 (RBR50, RBS50) v. 9.2.5.2.5SF-HW & v. 9.2.5.2.5.1SF-HW
6 7 8
Replies
140
Views
33K
mapretorius
M
Voxel
Voxel Custom firmware build for R9000/R8900 v. 1.0.4.44HF
Replies
5
Views
2K
Voxel
Voxel
Similar threads
Thread starter Title Forum Replies Date
sfx2000 Microsoft, DNS, and 192.168.1.0 General Network Security 4
B Which 3rd party dns filters do you use? General Network Security 19
P Threat protection / DNS filtering / Router security (on home network) General Network Security 1
C DNS changes General Network Security 8
tomasm Cloudflare DNS problems caused by Comcast? General Network Security 23
RMerlin How do malware-blocking DNS providers compare? General Network Security 67
XIII CVE-2024-31497: PuTTY vulnerability vuln-p521-bias General Network Security 3
sfx2000 CVE-2024-3094 - XZ Utils Backdoor - addtional info General Network Security 12

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 905 (members: 21, guests: 884)
Top