Microsoft Windows DNS/WINS服务器多个欺骗漏洞（MS09-008）

BUGTRAQ ID: 34013,33982,33988,33989 CVECAN ID: CVE-2009-0093,CVE-2009-0094,CVE-2009-0233,CVE-2009-0234 Microsoft Windows是微软发布的非常流行的操作系统。 Windows DNS服务器和WINS服务器存在多个漏洞，可能会允许远程攻击者将Internet上发送给系统的网络通信重定向至攻击者自己的系统。 1 Windows DNS服务器没有正确地重新使用缓存的响应，特制的DNS查询可以向DNS缓存投毒，重新定向网络通讯。 2 Windows...

Microsoft Security Bulletin MS09-008 – Important Vulnerabilities in DNS and WINS Server Could Allow Spoofing (962238)

Microsoft Security Bulletin MS09-008 – Important Vulnerabilities in DNS and WINS Server Could Allow Spoofing 962238 Published: March 10, 2009 Version: 1.0 General Information Executive Summary This security update resolves two privately reported vulnerabilities and two publicly disclosed...

Microsoft DNS Server WPAD Registration Spoofing (MS09-008; CVE-2009-0093)

WPAD feature enables web clients to automatically detect proxy settings without user intervention. A Web Proxy Auto-Discovery WPAD registration spoofing vulnerability has been reported in Microsoft DNS servers. The vulnerability is due to an error in the Windows DNS server that fails to correctly...