Spoofing Attack Vulnerability in Windows DNS clients - MS08-020
|ID: oval:org.secpod.oval:def:2584||Date: (C)2011-10-21 (M)2018-03-01|
|Class: PATCH||Family: windows|
The host is missing an important security update according to Microsoft security bulletin, MS08-020. The update is required to fix spoofing attack vulnerability. A flaw is present in Windows DNS clients, which fails handle a specially crafted responses to DNS requests. Successful exploitation could allow an attacker to send specially crafted responses to DNS requests, thereby spoofing or redirecting Internet traffic from legitimate locations.
|Microsoft Windows 2000|
|Microsoft Windows Server 2003|
|Microsoft Windows Vista|
|Microsoft Windows XP|