Innovation Driven by Operational Experience and Engineering Insight Deters NXNS Attacks

DNS and security have had a long and tangled relationship. The DNS has always been an attractive target since it's a network leverage point. At DNS OARC 30 in Bangkok in 2019, Akamai's Ralf Weber did a presentation called DNS Security: Past, Present, and Future It's Not Easy covering numerous DNS...

XACK DNS vulnerable to denial-of-service (DoS)

Overview XACK DNS is DNS server software provided by XACK, Inc. XACK DNS contains a denial-of-service DoS vulnerability due to an issue commonly referred to as NXNSAttack. XACK, Inc. reported this vulnerability to IPA to notify users of its solution through JVN. JPCERT/CC and XACK, Inc. coordinat...

ALPINE-CVE-2020-12662

Unbound before 1.10.1 has Insufficient Control of Network Message Volume, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records...

PT-2020-13194 · Cz.Nic +3 · Knot Resolver +3

Name of the Vulnerable Software and Affected Versions: Knot Resolver versions prior to 5.1.1 Description: The issue allows traffic amplification via a crafted DNS answer from an attacker-controlled server, also known as an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME ...