TuDoor Attack: Systematically Exploring and Exploiting Logic Vulnerabilities in DNS Response Pre-processing with Malformed Packets

Xiang Li, Wei Xu, Baojun Liu, Mingming Zhang, Zhou Li, Jia Zhang, Deliang Chang, Xiaofeng Zheng, Chuhan Wang, Jianjun Chen, Haixin Duan, Qi Li
May, 2024 DNS
PDF Cite Conference Page

Abstract

This paper proposes the TuDoor Attack, by systematically exploring and exploiting logic vulnerabilities in DNS response pre-processing with malformed packets, leading to DNS cache poisoning (1s), denial-of-service, and resource consuming attacks.

Type
Conference paper
Publication
In Oakland S&P ‘24. San Francisco, California, May 20–23, 2024. (Acceptance rate: 261/1,466=17.8%)
DNS
Chuhan Wang
Chuhan Wang
Associate Professor (Tenure-Track)

Chuhan Wang is a tenure-track Associate Professor in the School of Cyber Science and Engineering at Southeast University. He received the Ph.D. degree from the Network and Information Security Lab (NISL) at Tsinghua University, under the supervision of Prof. Haixin Duan and Prof. Jianjun Chen. His research interests include network security, protocol security, web security, email security and Internet measurement.