Suggest A Fix PC Support Forums > MS Patch Available: Prevent DNS Server Poisoning

Full Version: MS Patch Available: Prevent DNS Server Poisoning

Suggest A Fix PC Support Forums > Security > Security News and Warnings

73-997563179

Sep 6 2001, 07:41 PM

Microsoft DNS Server Software Susceptible to DNS Cache Poisoning in Default Configuration, Allowing Remote Users to Inject False DNS Records in Certain Situations

CERT is warning of a configuration vulnerability in Microsoft DNS Servers that allows bogus DNS entries to be cached in the server. Active attacks against this configuration issue have been observed on the Internet.

It is reported that the default configuration allows data from malicious or incorrectly configured DNS servers to be cached in the DNS server. As a result, a DNS server containing erroneous DNS records may propagate that to a Microsoft DNS server, which may in turn provide the erroneous information to any clients that use the server to obtain DNS information.

Microsoft Windows NT Server version 4.0
Microsoft Windows 2000 Datacenter Server
Microsoft Windows 2000 Advanced Server
Microsoft Windows 2000 Server

http://support.microsoft.com/support/kb/articles/Q241/3/52.ASP

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.