Rebinding attacks unbound
Federico Biancuzzi,
DNS rebinding was discovered in 1996 and affected the Java Virtual
Machine (VM). Recently a group of researchers at Stanford found out that this
vulnerability is still present in browsers and that the common solution, known as DNS pinning, is not effective anymore. In August, SecurityFocus covered the resurgence of interest in the attacks at the Black Hat Security briefings in Los Vegas.