0
Windows DNS Server Denial of Service Vulnerability
Moin,
Microsoft is aware of a vulnerability involving packet amplification that affects Windows DNS servers.
An attacker who successfully exploited this vulnerability could cause the DNS Server service to become nonresponsive.
To exploit this vulnerability an attacker would need to have access to at least one client and a domain that replies with a large volume of referral records, without glue records, that point to external victim sub domains. While resolving a name from the attacker client, for each referral record found, the resolver contacts the victim domain. This action can generate a large number of communications between the recursive resolver and the victim's authoritative DNS server to cause a Distributed Denial of Service (DDoS) attack.
Quelle: ADV200009 | Windows DNS Server Denial of Service Vulnerability
Gruß,
Dani
Microsoft is aware of a vulnerability involving packet amplification that affects Windows DNS servers.
An attacker who successfully exploited this vulnerability could cause the DNS Server service to become nonresponsive.
To exploit this vulnerability an attacker would need to have access to at least one client and a domain that replies with a large volume of referral records, without glue records, that point to external victim sub domains. While resolving a name from the attacker client, for each referral record found, the resolver contacts the victim domain. This action can generate a large number of communications between the recursive resolver and the victim's authoritative DNS server to cause a Distributed Denial of Service (DDoS) attack.
Quelle: ADV200009 | Windows DNS Server Denial of Service Vulnerability
Gruß,
Dani
Auf Facebook teilen
Auf X (Twitter) teilen
Auf Reddit teilen
Auf Linkedin teilenBitte markiere auch die Kommentare, die zur Lösung des Beitrags beigetragen haben
Content-ID: 574345
Url: https://administrator.de/knowledge/windows-dns-server-denial-of-service-vulnerability-574345.html
Ausgedruckt am: 10.04.2025 um 05:04 Uhr
