Microsoft issues guidance for DNS cache poisoning vulnerability

2020-12-08 13:58

Microsoft issued guidance on how to mitigate a DNS cache poisoning vulnerability reported by security researchers from the University of California and Tsinghua University.

Successfully exploiting the vulnerability could allow attackers to use modified DNS records to redirect a target to a malicious website under their control as part of DNS spoofing attacks.

The addressing spoofing vulnerability - tracked as CVE-2020-25705 and nicknamed SAD DNS - exists in the Windows DNS Resolver software component that comes bundled with the Windows Transmission Control Protocol/Internet Protocol stack.

"Microsoft is aware of a vulnerability involving DNS cache poisoning caused by IP fragmentation that affects Windows DNS Resolver," the company explains in a security advisory published as part of this month's Patch Tuesday.

"An attacker who successfully exploited this vulnerability could spoof the DNS packet which can be cached by the DNS Forwarder or the DNS Resolver."

News URL

https://www.bleepingcomputer.com/news/security/microsoft-issues-guidance-for-dns-cache-poisoning-vulnerability/

#cache #DNS #microsoft #poisoning #vulnerability #CVE-2020-25705

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2020-11-17	CVE-2020-25705	Use of Insufficiently Random Values vulnerability in multiple products A flaw in ICMP packets in the Linux kernel may allow an attacker to quickly scan open UDP ports. network linux redhat CWE-330	5.8

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Microsoft		696	797	4605	4368	3663	13433

News URL

Related news

Related Vulnerability

Related vendor