CVE-2018-8626

Name of the Vulnerable Software and Affected Versions Windows Server 2012 R2 Windows Server 2019 Windows Server 2016 Windows 10 Windows 10 Servers

Description A remote code execution issue exists due to improper handling of requests by Windows Domain Name System (DNS) servers, which can be exploited by sending a specially crafted request. This allows remote attackers to execute arbitrary code on the system.

Recommendations For Windows Server 2012 R2, update to a version that includes the fix for the Windows DNS Server Heap Overflow issue. For Windows Server 2019, apply the necessary patch to resolve the DNS server heap overflow vulnerability. For Windows Server 2016, install the update that addresses the remote code execution vulnerability in the DNS server. For Windows 10, ensure that all security updates are applied to mitigate the risk of remote code execution. For Windows 10 Servers, apply the relevant security patch to fix the vulnerability in the DNS server.