Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.104024
Category:Nmap NSE net
Title:Nmap NSE net: dns-fuzz
Summary:This script launches a DNS fuzzing attack against any DNS server.;;The script induces errors into randomly generated but valid DNS packets. The packet template that we;use includes one uncompressed and one compressed name.;;Use the 'dns-fuzz.timelimit' argument to control how long the fuzzing lasts. This script;should be run for a long time. It will send a very large quantity of packets and thus it's pretty;invasive, so it should only be used against private DNS servers as part of a software development;lifecycle.;;SYNTAX:;;dns-fuzz.timelimit: How long to run the fuzz attack. This is a;number followed by a suffix:'s' for seconds,;'m' for minutes, and 'h' for hours. Use;'0' for an unlimited amount of time. Default:;'10m'.
Description:Summary:
This script launches a DNS fuzzing attack against any DNS server.

The script induces errors into randomly generated but valid DNS packets. The packet template that we
use includes one uncompressed and one compressed name.

Use the 'dns-fuzz.timelimit' argument to control how long the fuzzing lasts. This script
should be run for a long time. It will send a very large quantity of packets and thus it's pretty
invasive, so it should only be used against private DNS servers as part of a software development
lifecycle.

SYNTAX:

dns-fuzz.timelimit: How long to run the fuzz attack. This is a
number followed by a suffix:'s' for seconds,
'm' for minutes, and 'h' for hours. Use
'0' for an unlimited amount of time. Default:
'10m'.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

CopyrightCopyright (C) 2011 NSE-Script: The Nmap Security Scanner; NASL-Wrapper: Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.