Windows Vulnerability In DNS Client Could Allow Spoofing (945553) Network Vulnerability

Summary

The remote host is probably affected by the vulnerability described in CVE-2008-0087

Impact

The DNS client in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, and Vista uses predictable DNS transaction IDs, which allows remote attackers to spoof DNS responses.

Solution

All Users should upgrade to the latest version.

References

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0087
http://www.microsoft.com/technet/security/bulletin/ms08-020.mspx

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-0087
CVSS Base Score: 8.8
AV:N/AC:M/Au:N/C:N/I:C/A:C

Related Vulnerabilities

Microsoft .NET Framework Remote Code Execution Vulnerability (2706726)
Microsoft .NET Framework Multiple Vulnerabilities (2861561)
Microsoft Active Directory Denial of Service Vulnerability (953235)
Microsoft Wireless LAN AutoConfig Service Remote Code Execution Vulnerability (970710)
Microsoft DNS Resolution Remote Code Execution Vulnerability (2509553)

Windows vulnerability in DNS Client Could Allow Spoofing (945553)

Take action and discover your vulnerabilities