CloudShark Blog

From the shark's mouth

Capture of recently discovered glibc getaddrinfo() vulnerability

Published
February 17, 2016
Tags
featured
captures

The folks at Google Security recently discovered a vulnerability in glibc’s getaddrinfo() library function, allowing attackers to execute malicious code transmitted in oversized DNS replies. Scary stuff!

Luckily, there’s already a patch, and the developers generated some proof of concept code to demonstrate the vulnerability. We took that code and ran it against some of our own systems. You can see a packet capture of the whole thing here:

https://www.cloudshark.org/captures/0a13d445cb31

This is scary stuff - thanks Google! When will we give it a scary name like HeartBleed?

About Us

CloudShark is made by QA Cafe, a technology company based in Portsmouth, NH. Our passion for packet captures has grown out of our other product CDRouter.

Get in touch via our Contact us page or by following us on your favorite service: