PT-2023-2387 · Microsoft · Windows Dns Server+1

George Hughey

·

Published

2023-04-11

·

Updated

2024-05-29

·

CVE-2023-28306

CVSS v2.0

6.8

Medium

VectorAV:N/AC:H/Au:M/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Windows DNS Server (affected versions not specified)
Description The issue is caused by a race condition situation. It allows remote attackers to execute arbitrary code and affect the system.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Race Condition

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-362CWE-416

Related Identifiers

BDU:2023-02169
CVE-2023-28306

Affected Products

Windows
Windows Dns Server