A vulnerability recently discovered in the software used in most DNS (Domain Name System) servers may be the most serious security threat yet found on the Internet, allowing hackers effectively to shut down ISPs and corporate Web servers as well as steal confidential data. The flaw in two widely used versions of BIND (Berkeley Internet Name Domain), distributed free by the Internet Software Consortium (ISC), could be exploited immediately by unscrupulous programmers if they can write a program to take advantage of it, said Jim Magdych, security research manager at the Computer Vulnerability Emergency Response Team (Covert) at PGP Security, a Network Associates business. Developing this might take only a few days, he said.
The link for this article located at InfoWorld is no longer available.
