Detections
Analytics
MS09-008: Vulnerabilities in DNS Server Could Allow Spoofing (961063) (uncredentialed check)
medium Nessus Plugin ID 72835
Language:
Synopsis
The DNS server running on the remote host is vulnerable to DNS spoofing attacks.Description
According to its self-reported version number, the Microsoft DNS Server running on the remote host has the following vulnerabilities :- An issue exists in installations where dynamic updates are enabled and ISATAP and WPAD are not already registered in DNS due to the lack of restricting registration on the 'wpad' hostname. A remote, authenticated attacker can exploit this issue to perform a man-in-the-middle attack. (CVE-2009-0093)
- An issue exists that allows a remote, unauthenticated attacker to quickly and reliably spoof responses and insert records into the DNS server's cache.
(CVE-2009-0233)
- An issue exists in the DNS Resolver Cache Service due to improper caching of DNS responses that could allow a remote, unauthenticated attacker to predict transaction IDs and poison caches by sending many crafted DNS queries. (CVE-2009-0234)
These issues may allow remote attackers to redirect network traffic intended for systems on the Internet to the attacker's own systems.
Solution
Microsoft has released a set of patches for Windows 2000, 2003 and 2008.See Also
Plugin Details
Severity: Medium
ID: 72835
File Name: ms_dns_kb961063.nasl
Version: 1.10
Type: remote
Family: DNS
Published: 3/5/2014
Updated: 8/5/2020
Configuration: Enable paranoid mode
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 4.2
CVSS v2
Risk Factor: Medium
Base Score: 6.4
Temporal Score: 4.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:P
Vulnerability Information
CPE: cpe:/o:microsoft:windows
Required KB Items: Settings/ParanoidReport, ms_dns/version
Exploit Ease: No known exploits are available
Patch Publication Date: 3/10/2009
Vulnerability Publication Date: 3/10/2009