Vulnerabilities
Windows Domain Name System (DNS) remote vulnerabilities (PC1-2008-0563)
Vulnerability chart |
Overview:
Two vulnerabilities were found in Windows Domain Name System (DNS). These vulnerabilities occur in both the DNS client and DNS server. They could let a remote attacker to redirect network traffic intended for systems on the Internet to the to the attacker’s own systems.
Vulnerable:
Windows 2000
Windows Server 2003
Windows XP
|
|
Remote Access
Yes, patch
is available
Patch is easy
to implement
|
|
| Release date: |
2008-07-09 |
| Description: |
DNS Insufficient Socket Entropy Vulnerability - CVE-2008-1447
A spoofing vulnerability occurs in Windows DNS client and Windows DNS server. This vulnerability could let a remote unauthenticated attacker to spoof responses quickly and reliably and insert records into the DNS server or client cache, thereby redirecting Internet traffic.
DNS Cache Poisoning Vulnerability - CVE-2008-1454
A cache poisoning vulnerability occurs in Windows DNS Server. The vulnerability could let an unauthenticated remote attacker to pass specially crafted esponses to DNS requests made by vulnerable systems, thereby poisoning the DNS cache and redirecting Internet traffic from legitimate locations. |
| Impact: |
With the help of this type of vulnerability, remote attackers would be enabled to give deceitful information. |
| Solution: |
The security update fixes two privately announced vulnerabilities in the Windows Domain Name System (DNS) by which spoofing could be enabled. The security update discusses the vulnerabilities by using strongly random DNS transaction IDs, using random sockets for UDP queries, and updating the logic used to manage the DNS cache. Microsoft advises customers to apply the update as sson as posiible. |
| Vulnerable: |
|
| References: |
http://www.microsoft.com/technet/security/bulletin/ms08-037.mspx |
| Products: | Microsoft Windows 2000 Server SP 4Risk level- Low
- Medium
- High
- Extreme
- Severe
Warning: security vulnerability level = extreme99 vulnerabilities(-y) found between 29 August, 2000 and 2 February, 2012. Windows 2000 points to a line of operating systems which is developed by... more894 files found: nwlscrpt.exe, imejpuex.exe, faxsend.exe, hpsjrreg.exe, fortutil.exe, jetpack.exe, MIRSETUP.EXE, DMPSETUP.EXE, loginw32.exe, wbemperm.exe, kodakimg.exe, MAKEBOOT.EXE, ddmprxy.exe, themes.exe, ipsecmon.exe... more
Microsoft Windows 2000 SP 4
Microsoft Windows XP SP 2 and SP 3Risk level- Low
- Medium
- High
- Extreme
- Severe
Warning: security vulnerability level = severe129 vulnerabilities(-y) found between 20 December, 2001 and 14 May, 2013. Windows XP refers to a line of operating systems developed by Microsoft for... more4916 files found: osk.exe, migwiz.exe, tlntadmn.exe, SYSPARSE.EXE, exctrlst.exe, tsprof.exe, xrxftplt.exe, nslookup.exe, oschoice.exe, dmdiag.exe, qprocess.exe, EXCH_regtrace.exe, cipher.exe, logman.exe, gprslt.exe... more
Microsoft Windows Server 2003 SP 1 and SP 2Risk level- Low
- Medium
- High
- Extreme
- Severe
Warning: security vulnerability level = severe51 vulnerabilities(-y) found between 10 July, 2003 and 14 July, 2009. Windows Server 2003 (known as Win2K3) points to a server operating system... more512 files found: owsadm.exe, w3wp.exe, httpcfg.exe, wmseditor.exe, dsrm.exe, IEExec.exe, dcgpofix.exe, portqry.exe, msppcnfg.exe, cmdkey.exe, addusr.exe, tapicfg.exe, dsget.exe, dsadd.exe, pop3svc.exe... more
Microsoft Windows Server 2008
| | Publisher: | Microsoft
| | Operating Systems: | Windows | | Impact: | Provide Misleading Information | |
|
Say something interesting!