Executive Summary
Summary | |
---|---|
Title | Vulnerability in DNS Client Could Allow Spoofing (945553) |
Informations | |||
---|---|---|---|
Name | MS08-020 | First vendor Publication | 2008-04-08 |
Vendor | Microsoft | Last vendor Modification | 2008-04-08 |
Severity (Vendor) | Important | Revision | N/A |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:N/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 8.8 | Attack Range | Network |
Cvss Impact Score | 9.2 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
This important security update resolves a privately reported vulnerability. This spoofing vulnerability exists in Windows DNS clients and could allow an attacker to send specially crafted responses to DNS requests, thereby spoofing or redirecting Internet traffic from legitimate locations. |
CAPEC : Common Attack Pattern Enumeration & Classification
Id | Name |
---|---|
CAPEC-59 | Session Credential Falsification through Prediction |
CAPEC-112 | Brute Force |
CAPEC-281 | Analytic Attacks |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-330 | Use of Insufficiently Random Values |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:5314 | |||
Oval ID: | oval:org.mitre.oval:def:5314 | ||
Title: | DNS Spoofing Attack Vulnerability | ||
Description: | The DNS client in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, and Vista uses predictable DNS transaction IDs, which allows remote attackers to spoof DNS responses. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2008-0087 | Version: | 3 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Os | 1 | |
Os | 2 | |
Os | 1 | |
Os | 3 |
OpenVAS Exploits
Date | Description |
---|---|
2011-01-10 | Name : Microsoft Windows DNS Client Service Response Spoofing Vulnerability (945553) File : nvt/gb_ms08-020.nasl |
2008-09-03 | Name : Windows vulnerability in DNS Client Could Allow Spoofing (945553) File : nvt/win_CVE-2008-0087.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
44172 | Microsoft Windows DNS Client Predictable Transaction ID Spoofing |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | dns cache poisoning attempt RuleID : 13667 - Revision : 19 - Type : PROTOCOL-DNS |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2008-04-08 | Name : The remote host is vulnerable to DNS spoofing. File : smb_nt_ms08-020.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:45:56 |
|
2014-01-19 21:30:11 |
|
2013-05-11 00:49:18 |
|