DNS and WINS Server Spoofing Vulnerability - MS09-008
|ID: oval:org.secpod.oval:def:2620||Date: (C)2011-10-27 (M)2018-05-27|
|Class: PATCH||Family: windows|
The host is missing impotant security update according to Microsoft security bulletin, MS09-008. The update is required to fix DNS and WINS server spoofing vulnerability. DNS Resolver Cache Service (aka DNSCache) when dynamic updates are enabled, does not reuse cached DNS responses and WINS server does not restrict registration of the (1) "wpad" and (2) "isatap" NetBIOS names, which allows remote authenticated users to hijack the Web Proxy Auto-Discovery (WPAD) and Intra-Site Automatic Tunnel Addressing Protocol (ISATAP) features. Successful exploitation could result in poisoning the caches and spoofing proxy server.
|Microsoft Windows 2000|
|Microsoft Windows Server 2003|
|Microsoft Windows Server 2008|