This script is Copyright (C) 2014 Tenable Network Security, Inc.
The DNS server running on the remote host is vulnerable to DNS spoofing
According to its self-reported version number, the Microsoft DNS Server
running on the remote host contains an issue with the entropy of
transaction IDs that could allow an attacker to spoof DNS responses. By
exploiting this issue, an attacker may be able to redirect legitimate
traffic from other systems that could allow him to construct more
See also :
Microsoft has released patches for Windows 2000 and 2003 Server.
Risk factor :
Medium / CVSS Base Score : 6.4
CVSS Temporal Score : 5.3
Public Exploit Available : true
Nessus Plugin ID: 72833 ()
Bugtraq ID: 25919
CVE ID: CVE-2007-3898
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.