Lucene search

K
securityvulnsBUGTRAQSECURITYVULNS:VULN:2773
HistoryApr 17, 2007 - 12:00 a.m.

DNS birthday attacks

2007-04-1700:00:00
BUGTRAQ
vulners.com
52

DNS uses 2-bytes message identificator to prevent spoofing attack. The problem is if few same requests came in same time they are forwarded with different IDs from same UDP port. It increases chances to spoof reply (so called birthdey effect: probability that among 60 randomely choosen persons there are 2 with same bithdate is under 95%).

Related for SECURITYVULNS:VULN:2773