Content
(MS07-062) Microsoft DNS Spoofing Attack Vulnerability (941672)
- Type
- Logic error
- Impact of exploitation
- Spoofing
- User Interaction
- no user interaction is needed
- Attack Vector
- Malicious local network traffic
- Rating
- Medium
- CVE reference
- CVE-2007-3898,
- Vendor Status
- Responded and patched
- Vulnerable systems
- Windows 2000 SP4,
- Windows 2003 SP1 - SP2,
- Summary
- A vulnerability in Microsoft Windows DNS Server may allow for spoofing attacks.
Tab Navigation
Description
Windows DNS Server is Microsoft's implementation of DNS. A vulnerability in Microsoft Windows DNS Server may allow for spoofing attacks. A malicious user could spoof DNS requests or redirect traffic surreptitiously. The vulnerability is caused by a design flaw in Windows DNS.
McAfee Product Mitigation & Recommendations
Recommendations
Download and install the patch available from Microsoft (941672): http://www.microsoft.com/technet/security/Bulletin/MS07-062.mspx
McAfee Product Mitigation
McAfee Foundstone
This Foundstone vulnerability check can be used to assess if your systems are vulnerable and is expected to accurately identify if a system is vulnerable in many enterprise environments.
- Signature:
- (MS07-062) Microsoft DNS Spoofing Attack Vulnerability (941672)
- Signature identifier:
- 5519
- Release date:
- 11/13/2007
McAfee Intrushield
This signature provides coverage for this vulnerability. McAfee Avert Labs will continue to update our coverage, as needed, as new exploit vectors are discovered and as new threats emerge.
- Signature:
- DNS: Microsoft DNS Spoofing Attack Vulnerability
- Signature identifier:
- 0x40303200
- Release date:
- 11/13/2007
- First released in:
- Sigest(s) 3.1.51, 4.1.14
Additional Resources
Microsoft Security Bulletin: Vulnerability in DNS Could Allow Internet Spoofing (941672)
http://www.microsoft.com/technet/security/Bulletin/MS07-062.mspx
All Information
Timeline -
11/13/2007
Vendor has provided a patch.
Description -
Windows DNS Server is Microsoft's implementation of DNS. A vulnerability in Microsoft Windows DNS Server may allow for spoofing attacks. A malicious user could spoof DNS requests or redirect traffic surreptitiously. The vulnerability is caused by a design flaw in Windows DNS.
McAfee Product Mitigation & Recommendations
Recommendations -
Download and install the patch available from Microsoft (941672): http://www.microsoft.com/technet/security/Bulletin/MS07-062.mspx
McAfee Product Mitigation
McAfee Foundstone
This Foundstone vulnerability check can be used to assess if your systems are vulnerable and is expected to accurately identify if a system is vulnerable in many enterprise environments.
- Signature:
- (MS07-062) Microsoft DNS Spoofing Attack Vulnerability (941672)
- Signature identifier:
- 5519
- Release date:
- 11/13/2007
McAfee Intrushield
This signature provides coverage for this vulnerability. McAfee Avert Labs will continue to update our coverage, as needed, as new exploit vectors are discovered and as new threats emerge.
- Signature:
- DNS: Microsoft DNS Spoofing Attack Vulnerability
- Signature identifier:
- 0x40303200
- Release date:
- 11/13/2007
- First released in:
- Sigest(s) 3.1.51, 4.1.14
Additional Resources
Additional Resources -
Microsoft Security Bulletin: Vulnerability in DNS Could Allow Internet Spoofing (941672)
http://www.microsoft.com/technet/security/Bulletin/MS07-062.mspx
