By default, DNS servers on Windows NT 4.0 and Windows 2000 Server cache glue records received from non-delegated name servers, which allows remote attackers to poison the DNS cache via spoofed DNS responses.
Weakness
The product does not properly verify that the source of data or communication is valid.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Windows_2000 | Microsoft | - (including) | - (including) |
| Windows_nt | Microsoft | 4.0 (including) | 4.0 (including) |
Related Attack Patterns
- https://cwe.mitre.org/data/definitions/111.html
- https://cwe.mitre.org/data/definitions/141.html
- https://cwe.mitre.org/data/definitions/142.html
- https://cwe.mitre.org/data/definitions/160.html
- https://cwe.mitre.org/data/definitions/21.html
- https://cwe.mitre.org/data/definitions/384.html
- https://cwe.mitre.org/data/definitions/385.html
- https://cwe.mitre.org/data/definitions/386.html
- https://cwe.mitre.org/data/definitions/387.html
- https://cwe.mitre.org/data/definitions/388.html
- https://cwe.mitre.org/data/definitions/510.html
- https://cwe.mitre.org/data/definitions/59.html
- https://cwe.mitre.org/data/definitions/60.html
- https://cwe.mitre.org/data/definitions/75.html
- https://cwe.mitre.org/data/definitions/76.html
- https://cwe.mitre.org/data/definitions/89.html
References
- http://support.microsoft.com/default.aspx?scid=KB%3Ben-us%3Bq241352
- http://www.kb.cert.org/vuls/id/109475
- http://www.securityfocus.com/bid/6791
- https://exchange.xforce.ibmcloud.com/vulnerabilities/3675
- http://support.microsoft.com/default.aspx?scid=KB%3Ben-us%3Bq241352
- http://www.kb.cert.org/vuls/id/109475
- http://www.securityfocus.com/bid/6791
- https://exchange.xforce.ibmcloud.com/vulnerabilities/3675