MS15-127: Security Update for Microsoft Windows DNS to Address Remote Code Execution (3100465)
Critical Nessus Plugin ID 87256
SynopsisThe remote host is affected by a remote code execution vulnerability.
DescriptionThe remote Windows host is affected by a remote code execution vulnerability in the Windows Domain Name System (DNS) server due to improper parsing of DNS requests. A remote attacker can exploit this, via specially crafted DNS requests, to execute arbitrary code in the context of the Local System Account.
SolutionMicrosoft has released a set of patches for Windows 2008, 2008 R2, 2012, and 2012 R2.