June 2018, and Windows Server can be pwned with a DNS request

www.theregister.co.uk | 6/12/2018 | Staff
ali11 (Posted by) Level 3
Click For Photo: https://regmedia.co.uk/2017/03/06/window_patch.jpg?x=1200&y=794

Microsoft has released its monthly security update, addressing a total of 51 CVE-listed security vulnerabilities.

The June edition of Patch Tuesday includes 11 fixes for critical vulnerabilities in Windows, including Microsoft's solution for the recently-disclosed Spectre Variant 4 chip design flaw.

Bugs - Month - CVE-2018-8225 - Code - Execution

Among the most serious bugs addressed this month is CVE-2018-8225, a remote code execution vulnerability present in the Windows DNSAPI. Microsoft says that the flaw would allow an attacker to take over the target system (either Windows or Windows Server) simply by sending a malformed DNS request.

"There are a couple of ways this could happen. The attacker could attempt to man-in-the-middle a legitimate query. The more likely scenario is simply tricking a target DNS server into querying an evil server that sends the corrupted response – something that can be done from the command line," explained Trend Micro ZDI's Dustin Childs.

Something - Bug - Service - Infrastructure - Servers

"It’s also something that could be easily scripted. This means there’s a system-level bug in a listening service on critical infrastructure servers, which also means this is wormable."

Childs also recommends admins prioritize the fix for CVE-2018-8231, a remote code execution bug in Http.sys. As with the DNS flaw, this vulnerability would allow a server to be remotely pwned with a malformed packet, in this case HTTP.

Month - Disclosure - Spectre - Variant - Microsoft

To help address last month's disclosure of a fourth Spectre variant, Microsoft...
(Excerpt) Read more at: www.theregister.co.uk
Wake Up To Breaking News!
Sign In or Register to comment.

Welcome to Long Room!

Where The World Finds Its News!