Vulnerabilities > CVE-2012-0006 - Resource Management Errors vulnerability in Microsoft Windows Server 2003 and Windows Server 2008
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
The DNS server in Microsoft Windows Server 2003 SP2 and Server 2008 SP2, R2, and R2 SP1 does not properly handle objects in memory during record lookup, which allows remote attackers to cause a denial of service (daemon restart) via a crafted query, aka "DNS Denial of Service Vulnerability."
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 5 |
Common Weakness Enumeration (CWE)
Msbulletin
bulletin_id | MS12-017 |
bulletin_url | |
date | 2012-03-13T00:00:00 |
impact | Denial of Service |
knowledgebase_id | 2647170 |
knowledgebase_url | |
severity | Important |
title | Vulnerability in DNS Server Could Allow Denial of Service |
Nessus
NASL family DNS NASL id MS_DNS_KB2647170.NASL description According to its self-reported version number, the Microsoft DNS server running on the remote host does not properly handle objects in memory when looking up the resource record of a domain. By sending a specially crafted DNS query an attacker may be able to exploit this flaw and cause the DNS server on the remote host to stop responding and eventually restart. last seen 2020-06-01 modified 2020-06-02 plugin id 72837 published 2014-03-05 reporter This script is Copyright (C) 2014-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/72837 title MS12-017: Vulnerability in DNS Server Could Allow Denial of Service (2647170) (uncredentialed check) NASL family Windows : Microsoft Bulletins NASL id SMB_NT_MS12-017.NASL description The DNS server installed on the remote host does not properly handle objects in memory when looking up the resource record of a domain. By sending a specially crafted DNS query, an attacker may be able to exploit this flaw and cause the DNS server on the remote host to stop responding and eventually restart. last seen 2020-06-01 modified 2020-06-02 plugin id 58329 published 2012-03-13 reporter This script is Copyright (C) 2012-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/58329 title MS12-017: Vulnerability in DNS Server Could Allow Denial of Service (2647170)
Oval
accepted | 2012-05-07T04:01:11.315-04:00 | ||||||||||||||||||||||||||||
class | vulnerability | ||||||||||||||||||||||||||||
contributors |
| ||||||||||||||||||||||||||||
definition_extensions |
| ||||||||||||||||||||||||||||
description | The DNS server in Microsoft Windows Server 2003 SP2 and Server 2008 SP2, R2, and R2 SP1 does not properly handle objects in memory during record lookup, which allows remote attackers to cause a denial of service (daemon restart) via a crafted query, aka "DNS Denial of Service Vulnerability." | ||||||||||||||||||||||||||||
family | windows | ||||||||||||||||||||||||||||
id | oval:org.mitre.oval:def:15098 | ||||||||||||||||||||||||||||
status | accepted | ||||||||||||||||||||||||||||
submitted | 2012-03-13T13:00:00 | ||||||||||||||||||||||||||||
title | DNS Denial of Service Vulnerability | ||||||||||||||||||||||||||||
version | 73 |
Seebug
bulletinFamily | exploit |
description | BUGTRAQ ID: 52374 CVE ID: CVE-2012-0006 Windows DNS Server是微软公司推出的域名系统或者域名服务,域名系统为Internet上的主机分配域名地址和IP地址。 Windows DNS Server在处理某些lookup查询时,在实现上存在远程拒绝服务漏洞,远程攻击者可利用此漏洞造成DNS服务器停止响应,拒绝服务合法用户。 0 Microsoft Server 2008 Microsoft Server 2003 厂商补丁: Microsoft --------- Microsoft已经为此发布了一个安全公告(MS12-017)以及相应补丁: MS12-017:Vulnerability in DNS Server Could Allow Denial of Service (2647170) 链接:http://www.microsoft.com/technet/security/bulletin/MS12-017.asp |
id | SSV:30196 |
last seen | 2017-11-19 |
modified | 2012-03-15 |
published | 2012-03-15 |
reporter | Root |
title | Microsoft Windows DNS Server远程拒绝服务漏洞(MS12-017) |
References
- http://osvdb.org/80005
- http://secunia.com/advisories/48394
- http://www.securityfocus.com/bid/52374
- http://www.securitytracker.com/id?1026789
- http://www.us-cert.gov/cas/techalerts/TA12-073A.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-017
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15098