Cross the Zone: Toward a Covert Domain Hijacking via Shared DNS Infrastructure
In this paper, we uncover a novel attack surface, named XDAuth, arising from public authoritative nameserver infrastructure's failure to isolate data across zones adequately. This flaw enables adversaries to inject arbitrary resource records across logical authority boundaries and covertly hijack domain names without authority.
Aug 16, 2024