Background: Spoofing of DNS data

Provide forged DNS data to a victim
e.g., by snooping and spoofing a response packet
can be a source of further attack
network hijacking, DoS, ...

DNS data can be easily spoofed
intercepting DNS packets
guessing query parameters
guess (query ID and UDP port) and return matching forged data
cache contamination