CVE-2009-0093 Information

Description

Windows DNS Server in Microsoft Windows 2000 SP4 Server 2003 SP1 and SP2 and Server 2008 when dynamic updates are enabled does not restrict registration of the \wpad\ hostname which allows remote authenticated users to hijack the Web Proxy Auto-Discovery (WPAD) feature and conduct man-in-the-middle attacks by spoofing a proxy server via a Dynamic Update request for this hostname aka \DNS Server Vulnerability in WPAD Registration Vulnerability\ a related issue to CVE-2007-1692.

Reference

http://blog.ncircle.com/blogs/vert/archives/2009/03/successful_exploit_renders_mic.html http://blogs.technet.com/srd/archive/2009/03/13/ms09-008-dns-and-wins-server-security-update-in-more-detail.aspx http://osvdb.org/52519 http://secunia.com/advisories/34217 http://support.avaya.com/elmodocs2/security/ASA-2009-083.htm http://www.securityfocus.com/bid/33989 http://www.securitytracker.com/id?1021830 http://www.us-cert.gov/cas/techalerts/TA09-069A.html http://www.vupen.com/english/advisories/2009/0661 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-008 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A6138