CVE-2008-0087 Information

Feb 14, 2021 cve

Description

The DNS client in Microsoft Windows 2000 SP4 XP SP2 Server 2003 SP1 and SP2 and Vista uses predictable DNS transaction IDs which allows remote attackers to spoof DNS responses.

Reference

http://marc.info/?l=bugtraq&m=120845064910729&w=2 http://secunia.com/advisories/29696 http://www.securityfocus.com/archive/1/490575/100/0/threaded http://www.securityfocus.com/bid/28553 http://www.securitytracker.com/id?1019802 http://www.trusteer.com/docs/windowsresolver.html http://www.us-cert.gov/cas/techalerts/TA08-099A.html http://www.vupen.com/english/advisories/2008/1144/references https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-020 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A5314

Share on: