Part of our normal pen test process, when performing an external assessment, is running a Nessus scan against the in-scope IP range(s) provided by our customer. We usually have this running in the background while carrying out our own analysis against the IP ranges. On a past assessment, we started with this same process. After some time went by, I checked our scan results that we had so far, and found an interesting vulnerability listed. Specifically, Nessus plugin 35372:
read more.......https://www.christophertruncer.com/dns-modification-dnsinject-nessus-plugin-35372/
read more.......https://www.christophertruncer.com/dns-modification-dnsinject-nessus-plugin-35372/