Question on DNS security issue
 

I know that a flaw has recently been discovered in the DNS system, and Msoft, for instance, have released patches for Windows.

Is applying these patches sufficient?

What about my adsl modem/router which also does dns lookups? Does that need to be patched? Can't find any info on the manufacturer's web site.

What aout my ISP? If they do not apply the patches to their system am I at risk?

Are there any checks available?

It's only servers providing DNS which are at risk. Your Windows workstation won't need any dns patches. Your router is simply a dns relay (ie. receives requests from you and passes them on to your ISP).

If your ISP hasn't patched, potentially you could be the victim of dns poisoning if they should be exploited, at which point it's feasible you could type in Pendleton Community Bank to your browser, and get up a webpage which looks exactly like your bank, but it's not your bank, and most people wouldn't notice the difference. The potential fallout of this one is actually quite scary.

Go here: DNSstuff: On-demand DNS and network tools to analyze, diagnose and monitor a domain or IP address
and run the DNS vulnerability test. It will throw a load of requests at your ISP's DNS servers to check for source port randomisation (which is what you want).