Today I presented at USENIX WOOT ‘13 a new vulnerability that we had found in BIND, the most popular DNS server.Exploiting this vulnerability allows to reduce the amount of effort required for an off-path (blind) DNS cache poisoning attack.

Important links:

  1. Whitepaper
  2. Presentation
  3. Blog post
  4. ISC's (The orginization behind BIND) Operational Notification