MS08-037: Vulnerabilities in DNS Could Allow Spoofing (951746) (uncredentialed check)

This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.

Synopsis :

The DNS server running on the remote host is vulnerable to DNS spoofing

Description :

According to its self-reported version number, the Microsoft DNS Server
running on the remote host contains issues in the DNS library that could
allow an attacker to send malicious DNS responses to DNS requests made
by the remote host thereby spoofing or redirecting internet traffic from
legitimate locations.

See also :

Solution :

Microsoft has released patches for Windows 2000, 2003, and 2008

Risk factor :

Medium / CVSS Base Score : 6.4
CVSS Temporal Score : 5.6
Public Exploit Available : true

Family: DNS

Nessus Plugin ID: 72834 ()

Bugtraq ID: 30131

CVE ID: CVE-2008-1447