Description
The DNS client in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, and Vista uses predictable DNS transaction IDs, which allows remote attackers to spoof DNS responses.
References (10)
Core 10
Core References
Broken Link, Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA08-099A.html
Mailing List, Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=120845064910729&w=2
Patch, Vendor Advisory vendor-advisory
x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-020
Broken Link, Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/29696
Broken Link x_refsource_misc
http://www.trusteer.com/docs/windowsresolver.html
Broken Link, Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1019802
Broken Link, Third Party Advisory vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5314
Broken Link vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2008/1144/references
Broken Link, Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/490575/100/0/threaded
Broken Link, Patch, Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/28553
Scores
CVSS v3
7.5
EPSS
0.3137
EPSS Percentile
98.0%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-330
Status
published
Products (4)
microsoft/windows_2000
microsoft/windows_server_2003
(2 CPE variants)
microsoft/windows_vista
microsoft/windows_xp
(3 CPE variants)
Published
Apr 08, 2008
Tracked Since
Feb 18, 2026