TuDoor Attack: Systematically Exploring and Exploiting Logic Vulnerabilities in DNS Response Pre-processing with Malformed Packets

Xiang Li, Wei Xu, Baojun Liu, Mingming Zhang, Zhou Li, Jia Zhang, Deliang Chang, Xiaofeng Zheng, Chuhan Wang, Jianjun Chen, Haixin Duan, Qi Li

May, 2024 DNS

Abstract

This paper proposes the TuDoor Attack, by systematically exploring and exploiting logic vulnerabilities in DNS response pre-processing with malformed packets, leading to DNS cache poisoning (1s), denial-of-service, and resource consuming attacks.

Type

Conference paper

Publication

In Oakland S&P ‘24. San Francisco, California, May 20–23, 2024. (Acceptance rate: ??)

DNS

Chuhan Wang

Ph.D. Candidate in Cyberspace Security (Tsinghua University)

Hello, I am Chuhan Wang, a 5th year PhD student at Network and Information Security Lab (NISL) of Tsinghua University, advised by Prof. Haixin Duan and Assistant Prof. Jianjun Chen. My research interests include Email Security, Network Security and Internet Measurement.