CVE-2007-1644

Name of the Vulnerable Software and Affected Versions: Windows DNS Server (affected versions not specified)

Description: The issue concerns the dynamic DNS update mechanism in the DNS Server service on Microsoft Windows, which fails to properly authenticate clients under certain conditions. This allows remote attackers to modify DNS records, potentially leading to man-in-the-middle attacks on web traffic, pharming attacks through DNS record poisoning, and denial of service due to erroneous name resolution.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.