TuDoor Attack: Systematically Exploring and Exploiting Logic Vulnerabilities in DNS Response Pre-processing with Malformed Packets
Xiang Li,
Wei Xu,
Baojun Liu,
Mingming Zhang,
Zhou Li,
Jia Zhang,
Deliang Chang,
Xiaofeng Zheng,
Chuhan Wang,
Jianjun Chen,
Haixin Duan,
Qi Li
May, 2024
DNS
Abstract
This paper proposes the TuDoor Attack, by systematically exploring and exploiting logic vulnerabilities in DNS response pre-processing with malformed packets, leading to DNS cache poisoning (1s), denial-of-service, and resource consuming attacks.
Publication
In
Oakland S&P ‘24. San Francisco, California, May 20–23, 2024. (Acceptance rate: 261/1,466=17.8%)