exploitDog

GHSA-5m49-9cvp-c8jj

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The DNS server in Microsoft Windows 2000 Server SP4, and Server 2003 SP1 and SP2, uses predictable transaction IDs when querying other DNS servers, which allows remote attackers to spoof DNS replies, poison the DNS cache, and facilitate further attack vectors.

The DNS server in Microsoft Windows 2000 Server SP4, and Server 2003 SP1 and SP2, uses predictable transaction IDs when querying other DNS servers, which allows remote attackers to spoof DNS replies, poison the DNS cache, and facilitate further attack vectors.

Ссылки

EPSS

Процентиль: 99%

0.83309

Высокий

CVE ID

Связанные уязвимости

CVE-2007-3898

nvd

около 18 лет назад

The DNS server in Microsoft Windows 2000 Server SP4, and Server 2003 SP1 and SP2, uses predictable transaction IDs when querying other DNS servers, which allows remote attackers to spoof DNS replies, poison the DNS cache, and facilitate further attack vectors.

EPSS

Процентиль: 99%

0.83309

Высокий

CVE ID