Content
(MS08-020) Microsoft DNS Client Spoofing Vulnerability (945553)
- Type
- Logic error
- Impact of exploitation
- Spoofing
- User Interaction
- no user interaction is needed
- Attack Vector
- Malicious remote network traffic
- Rating
- Medium
- CVE reference
- CVE-2008-0087,
- Vendor Status
- Responded and patched
- Vulnerable systems
- Windows 2000 Sp4,
- Windows Xp Sp2,
- Windows 2003 Sp2,
- Windows Vista SP0,
- Summary
- A vulnerability in Microsoft DNS Client may allow for remote security-bypass attacks.
Tab Navigation
Description
Microsoft DNS client is a DNS client for Windows operating systems. A vulnerability in Microsoft DNS Client may allow for remote security-bypass attacks. The vulnerability is due to lack of random-enough transaction values when doing DNS queries. A malicious remote attacker could spoof Internet traffic by exploiting this vulnerability.
McAfee Product Mitigation & Recommendations
Recommendations
Download and install the patch available from Microsoft (945553): http://www.microsoft.com/technet/security/Bulletin/MS08-020.mspx
McAfee Product Mitigation
McAfee Foundstone
This Foundstone vulnerability check can be used to assess if your systems are vulnerable and is expected to accurately identify if a system is vulnerable in many enterprise environments.
- Signature:
- (MS08-020) Microsoft DNS Client Spoofing Vulnerability (945553)
- Signature identifier:
- 5811
- Release date:
- 4/8/2008
Additional Resources
Microsoft Security Bulletin: Vulnerability in DNS Client Could Allow Spoofing (945553)
http://www.microsoft.com/technet/security/bulletin/MS08-020.mspx
All Information
Timeline -
4/8/2008
Vendor has provided a patch.
Description -
Microsoft DNS client is a DNS client for Windows operating systems. A vulnerability in Microsoft DNS Client may allow for remote security-bypass attacks. The vulnerability is due to lack of random-enough transaction values when doing DNS queries. A malicious remote attacker could spoof Internet traffic by exploiting this vulnerability.
McAfee Product Mitigation & Recommendations
Recommendations -
Download and install the patch available from Microsoft (945553): http://www.microsoft.com/technet/security/Bulletin/MS08-020.mspx
McAfee Product Mitigation
McAfee Foundstone
This Foundstone vulnerability check can be used to assess if your systems are vulnerable and is expected to accurately identify if a system is vulnerable in many enterprise environments.
- Signature:
- (MS08-020) Microsoft DNS Client Spoofing Vulnerability (945553)
- Signature identifier:
- 5811
- Release date:
- 4/8/2008
Additional Resources
Additional Resources -
Microsoft Security Bulletin: Vulnerability in DNS Client Could Allow Spoofing (945553)
http://www.microsoft.com/technet/security/bulletin/MS08-020.mspx
