Microsoft Windows DNS/WINS服务器多个欺骗漏洞（MS09-008）

BUGTRAQ ID: 34013,33982,33988,33989 CVECAN ID: CVE-2009-0093,CVE-2009-0094,CVE-2009-0233,CVE-2009-0234 Microsoft Windows是微软发布的非常流行的操作系统。 Windows DNS服务器和WINS服务器存在多个漏洞，可能会允许远程攻击者将Internet上发送给系统的网络通信重定向至攻击者自己的系统。 1 Windows DNS服务器没有正确地重新使用缓存的响应，特制的DNS查询可以向DNS缓存投毒，重新定向网络通讯。 2 Windows...

Microsoft DNS Server WPAD Registration Spoofing (MS09-008; CVE-2009-0093)

WPAD feature enables web clients to automatically detect proxy settings without user intervention. A Web Proxy Auto-Discovery WPAD registration spoofing vulnerability has been reported in Microsoft DNS servers. The vulnerability is due to an error in the Windows DNS server that fails to correctly...

Microsoft Security Bulletin MS09-008 – Important Vulnerabilities in DNS and WINS Server Could Allow Spoofing (962238)

Microsoft Security Bulletin MS09-008 – Important Vulnerabilities in DNS and WINS Server Could Allow Spoofing 962238 Published: March 10, 2009 Version: 1.0 General Information Executive Summary This security update resolves two privately reported vulnerabilities and two publicly disclosed...