9 July 2008,
Comments: Comments Off on Peplink Response to DNS Poisoning Vulnerability CVE-2008-1447
Date: 9 July 2008
Mountain View, CA
Peplink Balance products are not vulnerable to the DNS cache poisoning technique, announced by CERT CVE-2008-1447 on July 8, 2008 for the following reasons:
all DNS queries originating from Peplink Balance implement full 16-bit random transaction ID, as well as source port number randomization.
Peplink Balance does not answer any recursive queries from the Internet.
Peplink is a leader in developing Internet load balancing and failover solutions. The Balance dual-WAN and multi-WAN routers have allowed businesses to increase Internet reliability, get better performance and cut costs. Peplink Balance routers have been deployed around the world, helping thousands of businesses stay connected to the Internet and enhance productivity. Peplink has formed partnerships with distributors and system integrators worldwide. Information about Peplink can be found at https://www.peplink.com.