As a follow up to our diary earlier this week about a potential new DNS Vulnerability, Microsoft has released an advisory in regard to the vulnerability. Microsoft has investigated and it appears a vulnerability exists that could allow an attacker to run code under the Domain Name System Server service. This service by default runs as the local SYSTEM id.
Microsoft has a few suggested actions that can mitigate the risk.
For more information, please see KB 935964 (Vulnerability in RPC on WIndows DNS Server Could Allow Remote Code Execution).
Apr 13th 2007
1 decade ago