Vulnerabilities > CVE-2012-1194 - Remote Security vulnerability in Windows Server 2008 Standard Edition

CVSS 6.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

microsoft

NVD

Published: 2012-02-17

Updated: 2012-02-20

Summary

The resolver in the DNS Server service in Microsoft Windows Server 2008 before R2 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.

Vulnerable Configurations

Part	Description	Count
OS	Microsoft Microsoft Windows Server 2008 -	41

References

https://www.isc.org/files/imce/ghostdomain_camera.pdf