CVE-2008-1447

This is a functional proof-of-concept exploit for CVE-2008-1447, implementing the Kaminsky DNS cache poisoning attack. It crafts malicious DNS responses to poison a resolver's cache by exploiting predictable transaction IDs and port numbers.

This exploit leverages the DNS cache poisoning vulnerability (CVE-2008-1447) by brute-forcing transaction IDs to inject a malicious DNS record into a vulnerable DNS server. It uses Scapy to craft and send spoofed DNS responses.

This exploit targets the Kaminsky DNS Cache Poisoning flaw (CVE-2008-1447) by injecting malicious DNS records into a vulnerable DNS resolver. It replaces legitimate nameservers for a target domain with attacker-controlled ones via spoofed DNS responses.

This repository provides a functional Metasploit module for exploiting CVE-2008-1447, a DNS cache poisoning vulnerability, with a fix for a runtime error (`undefined method each` for `IPAddr`). The module replaces target domain nameserver entries in vulnerable DNS servers.

This Metasploit module exploits CVE-2008-1447, a DNS cache poisoning vulnerability, by sending spoofed DNS responses to replace nameserver entries for a target domain. It uses randomized transaction IDs and source ports to bypass DNS server validation.

This Metasploit module exploits CVE-2008-1447, a DNS cache poisoning vulnerability, by sending spoofed DNS responses to inject malicious host entries into a target nameserver's cache. It leverages the bailiwick constraint flaw discovered by Dan Kaminsky.