PT-2000-1997 · Microsoft · Windows 98+3
Published
2000-04-14
·
Updated
2024-02-08
·
CVE-2000-1218
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Microsoft Windows versions 98, NT 4.0, 2000, and XP
Description
The default configuration for the domain name resolver sets the
QueryIpMatching parameter to 0, which causes Windows to accept DNS updates from hosts that it did not query, allowing remote attackers to poison the DNS cache.Recommendations
For Microsoft Windows 98, NT 4.0, 2000, and XP, consider changing the default configuration of the domain name resolver to set the
QueryIpMatching parameter to 1 to prevent DNS cache poisoning.
As a temporary workaround, restrict DNS updates to only come from trusted sources until a more permanent solution can be applied.Fix
Origin Validation Error
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Windows 2000
Windows 98
Windows Nt 4.0
Windows Xp