Intrusion Prevention

MS.DNS.Server.Cache.Information.Spoofing

Description

This indicates an attack attempt to exploit an Information Spoofing vulnerability in Microsoft Windows DNS Server.
The vulnerability is caused by a design error when the software is handling a crafted DNS request.

Affected Products

Microsoft Windows 2000 Server Service Pack 4
Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems
Windows Server 2008 for 32-bit Systems
Windows Server 2008 for x64-based Systems

Impact

Information Spoofing: Remote attackers can spoof the data of vulnerable systems.

Recommended Actions

Apply the patch, available from the Web site.
http://www.microsoft.com/technet/security/Bulletin/ms09-008.mspx

CVE References

CVE-2009-0234