Microsoft Windows DNS Client Service Response Spoofing Vulnerability (945553) Network Vulnerability

Summary

This host is missing a critical security update according to Microsoft Bulletin MS08-020.

Impact

Successful exploitation could allow remote attackers to spoof DNS replies, allowing them to redirect network traffic and to launch man-in-the-middle attacks. Impact Level: System

Solution

Run Windows Update and update the listed hotfixes or download and update mentioned hotfixes in the advisory from the below link. http://www.microsoft.com/technet/security/bulletin/ms08-020.mspx

Insight

The flaws are due to the Windows DNS client using predictable transaction IDs in outgoing queries and can be exploited to poison the DNS cache when the transaction ID is guessed.

Affected

Microsoft Windows 2K/XP/2003/Vista

References

http://secunia.com/advisories/29696
http://securitytracker.com/alerts/2008/Apr/1019802.html
http://www.microsoft.com/technet/security/bulletin/ms08-020.mspx

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-0087

CVSS	Base Score: 8.8 AV:N/AC:M/Au:N/C:N/I:C/A:C

Related Vulnerabilities

Microsoft DNS Resolution Remote Code Execution Vulnerability (2509553)
Microsoft Excel Remote Code Execution Vulnerability (956416)
Microsoft GDI+ Remote Code Execution Vulnerability (2489979)
Microsoft .NET Framework Privilege Elevation Vulnerability (2958732)
Message Queuing Remote Code Execution Vulnerability (951071) - Remote

Take action and discover your vulnerabilities