• info
• discussion
• exploit
• solution
• references

Microsoft Windows Recursive DNS Spoofing Vulnerability

Solution:
The vendor released patches and an advisory to address this issue. Please see the references for more information.


Microsoft Windows 2000 Server SP2

• Microsoft Security Update for Windows 2000 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c80fcd9b-d0f8 -44db-96fc-bf2ead054ff4&displaylang=en

Microsoft Windows Server 2003 Enterprise Edition SP1

• Microsoft Security Update for Windows Server 2003 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=ed8e2cb4-bcd9 -40fc-9ad6-46b364d0656d&displaylang=en

Microsoft Windows 2000 Advanced Server SP1

• Microsoft Security Update for Windows 2000 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c80fcd9b-d0f8 -44db-96fc-bf2ead054ff4&displaylang=en

Microsoft Windows 2000 Datacenter Server

• Microsoft Security Update for Windows 2000 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c80fcd9b-d0f8 -44db-96fc-bf2ead054ff4&displaylang=en

Microsoft Windows 2000 Advanced Server SP2

• Microsoft Security Update for Windows 2000 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c80fcd9b-d0f8 -44db-96fc-bf2ead054ff4&displaylang=en

Microsoft Windows Server 2003 Itanium SP1

• Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=f3ad67de-85ad -452d-a1e0-0af3faf969d6&displaylang=en

Microsoft Windows Server 2003 Datacenter Edition

• Microsoft Security Update for Windows Server 2003 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=ed8e2cb4-bcd9 -40fc-9ad6-46b364d0656d&displaylang=en

Microsoft Windows Server 2003 Itanium 0

• Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=f3ad67de-85ad -452d-a1e0-0af3faf969d6&displaylang=en

Microsoft Windows 2000 Advanced Server SP4

• Microsoft Security Update for Windows 2000 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c80fcd9b-d0f8 -44db-96fc-bf2ead054ff4&displaylang=en

Microsoft Windows Server 2003 SP2

• Microsoft Security Update for Windows Server 2003 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=ed8e2cb4-bcd9 -40fc-9ad6-46b364d0656d&displaylang=en

Microsoft Windows 2000 Datacenter Server SP1

• Microsoft Security Update for Windows 2000 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c80fcd9b-d0f8 -44db-96fc-bf2ead054ff4&displaylang=en

Microsoft Windows Server 2003 Enterprise Edition

• Microsoft Security Update for Windows Server 2003 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=ed8e2cb4-bcd9 -40fc-9ad6-46b364d0656d&displaylang=en

Microsoft Windows Server 2003 Standard Edition SP2

• Microsoft Security Update for Windows Server 2003 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=ed8e2cb4-bcd9 -40fc-9ad6-46b364d0656d&displaylang=en

Microsoft Windows 2000 Datacenter Server SP4

• Microsoft Security Update for Windows 2000 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c80fcd9b-d0f8 -44db-96fc-bf2ead054ff4&displaylang=en

Microsoft Windows Server 2003 SP1

• Microsoft Security Update for Windows Server 2003 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=ed8e2cb4-bcd9 -40fc-9ad6-46b364d0656d&displaylang=en

Microsoft Windows Server 2003 Itanium SP2

• Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=f3ad67de-85ad -452d-a1e0-0af3faf969d6&displaylang=en

Microsoft Windows Server 2003 Web Edition

• Microsoft Security Update for Windows Server 2003 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=ed8e2cb4-bcd9 -40fc-9ad6-46b364d0656d&displaylang=en

Microsoft Windows 2000 Advanced Server SP3

• Microsoft Security Update for Windows 2000 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c80fcd9b-d0f8 -44db-96fc-bf2ead054ff4&displaylang=en

Microsoft Windows Server 2003 Web Edition SP1

• Microsoft Security Update for Windows Server 2003 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=ed8e2cb4-bcd9 -40fc-9ad6-46b364d0656d&displaylang=en

Microsoft Windows 2000 Datacenter Server SP3

• Microsoft Security Update for Windows 2000 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c80fcd9b-d0f8 -44db-96fc-bf2ead054ff4&displaylang=en

Microsoft Windows Server 2003 Web Edition SP2

• Microsoft Security Update for Windows Server 2003 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=ed8e2cb4-bcd9 -40fc-9ad6-46b364d0656d&displaylang=en

Microsoft Windows Server 2003 Standard Edition SP1

• Microsoft Security Update for Windows Server 2003 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=ed8e2cb4-bcd9 -40fc-9ad6-46b364d0656d&displaylang=en

Microsoft Windows 2000 Server SP3

• Microsoft Security Update for Windows 2000 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c80fcd9b-d0f8 -44db-96fc-bf2ead054ff4&displaylang=en

Microsoft Windows Server 2003 Standard Edition

• Microsoft Security Update for Windows Server 2003 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=ed8e2cb4-bcd9 -40fc-9ad6-46b364d0656d&displaylang=en

Microsoft Windows 2000 Datacenter Server SP2

• Microsoft Security Update for Windows 2000 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c80fcd9b-d0f8 -44db-96fc-bf2ead054ff4&displaylang=en

Microsoft Windows 2000 Server SP4

• Microsoft Security Update for Windows 2000 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c80fcd9b-d0f8 -44db-96fc-bf2ead054ff4&displaylang=en

Microsoft Windows 2000 Server SP1

• Microsoft Security Update for Windows 2000 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c80fcd9b-d0f8 -44db-96fc-bf2ead054ff4&displaylang=en

Microsoft Windows Server 2003 Enterprise x64 Edition SP2

• Microsoft Security Update for Windows Server 2003 x64 Edition (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=d1323e14-ffa7 -4d03-a2a7-9240c192a75e&displaylang=en

Microsoft Windows Server 2003 Enterprise x64 Edition

• Microsoft Security Update for Windows Server 2003 x64 Edition (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=d1323e14-ffa7 -4d03-a2a7-9240c192a75e&displaylang=en

Microsoft Windows 2000 Advanced Server

• Microsoft Security Update for Windows 2000 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c80fcd9b-d0f8 -44db-96fc-bf2ead054ff4&displaylang=en

Microsoft Windows 2000 Server

• Microsoft Security Update for Windows 2000 (KB941672)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c80fcd9b-d0f8 -44db-96fc-bf2ead054ff4&displaylang=en