CVE-2018-8320

Name of the Vulnerable Software and Affected Versions Windows Server 2012 R2 Windows Server 2008 Windows Server 2012 Windows Server 2019 Windows Server 2016 Windows Server 2008 R2 Windows 10 Windows 10 Servers

Description The issue is related to errors in access control within the DNS Global Blocklist mechanism of the Microsoft Windows operating system. This can be exploited by a remote attacker to redirect traffic to a malicious endpoint, effectively bypassing a security feature.

Recommendations For Windows Server 2012 R2, update to a version that includes the security fix for this issue. For Windows Server 2008, apply the necessary configuration changes to mitigate the risk. For Windows Server 2012, restrict access to the DNS Global Blocklist feature until a patch is available. For Windows Server 2019, consider disabling the DNS Global Blocklist feature temporarily as a workaround. For Windows Server 2016, apply the recommended security updates to resolve the issue. For Windows Server 2008 R2, update the system to include the latest security patches. For Windows 10, avoid using the affected DNS Global Blocklist feature until the issue is resolved. For Windows 10 Servers, apply the necessary security updates to fix the vulnerability.