subscribe to our feed.News is circulating about a new zero day exploit on Windows DNS servers that allows local system rights in the “security context of the Domain Name System Server Service.” Microsoft is downplaying the attacks, saying that they are not widespread. I went out in search of the said exploitation code and found it easily on frequented security / exploit boards. So, I would say that the code is in the hands of folks. I just don’t know the extent of the exploitation.
Systems affected:
Windows 2000 Server Service Pack 4
Windows Server 2003 Service Pack 1
Windows Server 2003 Service Pack 2
Here’s Microsoft’s take on it: “Microsoft’s initial investigation reveals that the attempts to exploit this vulnerability could allow an attacker to run code in the security context of the Domain Name System Server Service, which by default runs as Local SYSTEM. Our ongoing monitoring in conjunction with our MSRA partners indicates that we are seeing a new attack that is attempting to exploit this vulnerability. At this time, the attack does not appear widespread.”
If you would like to make a comment, please fill out the form below.
Recent Comments