The default configuration for the domain name resolver for Microsoft Windows 98, NT 4.0, 2000, and XP sets the QueryIpMatching parameter to 0, which causes Windows to accept DNS updates from hosts that it did not query, which allows remote attackers to poison the DNS cache.
References
Link | Resource |
---|---|
http://www.kb.cert.org/vuls/id/458659 | Third Party Advisory US Government Resource |
https://exchange.xforce.ibmcloud.com/vulnerabilities/4280 | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2005-04-21T04:00:00
Updated: 2017-07-10T14:57:01
Reserved: 2005-04-21T00:00:00
Link: CVE-2000-1218
JSON object: View
NVD Information
Status : Analyzed
Published: 2000-04-14T04:00:00.000
Modified: 2024-02-08T20:47:22.217
Link: CVE-2000-1218
JSON object: View
Redhat Information
No data.
CWE