[SingCERT] MS08-037 Vulnerabilities in DNS Could Allow Spoofing
- Published on Wednesday, 09 July 2008 20:49
This security update resolves two privately reported vulnerabilities in the Windows Domain Name System (DNS) that could allow spoofing. These vulnerabilities exist in both the DNS client and DNS server and could allow a remote attacker to redirect network traffic intended for systems on the Internet to the attacker’s own systems.
The security update addresses the vulnerabilities by using strongly random DNS transaction IDs, using random sockets for UDP queries, and updating the logic used to manage the DNS cache. [ Affected Systems ]
Windows Server 2003
Windows Server 2008
The vendor has issued a fix (see reference below).