CVE-2001-1452

Name of the Vulnerable Software and Affected Versions Windows NT 4.0 Windows 2000 Server

Description The issue allows remote attackers to poison the DNS cache via spoofed DNS responses because DNS servers cache glue records received from non-delegated name servers by default.

Recommendations For Windows NT 4.0, consider disabling the caching of glue records from non-delegated name servers as a temporary workaround. For Windows 2000 Server, restrict the DNS server's ability to cache glue records from non-delegated name servers until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.