Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0093

Overview

Vulnerability Score 3.5 3.5
CVE Id CVE-2009-0093
Last Modified 21 Aug 2010 01:29:43
Published 11 Mar 2009 10:19:15
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2009-0093

Summary

Windows DNS Server in Microsoft Windows 2000 SP4, Server 2003 SP1 and SP2, and Server 2008, when dynamic updates are enabled, does not restrict registration of the "wpad" hostname, which allows remote authenticated users to hijack the Web Proxy Auto-Discovery (WPAD) feature, and conduct man-in-the-middle attacks by spoofing a proxy server, via a Dynamic Update request for this hostname, aka "DNS Server Vulnerability in WPAD Registration Vulnerability," a related issue to CVE-2007-1692.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows Server 2003

  • Microsoft Windows Server 2008


References

CERT - TA09-069A

MS - MS09-008

VUPEN - ADV-2009-0661

SECTRACK - 1021830

BID - 33989

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2009-083.htm

SECUNIA - 34217

OSVDB - 52519

CONFIRM - http://blogs.technet.com/srd/archive/2009/03/13/ms09-008-dns-and-wins-server-security-update-in-more-detail.aspx

MISC - http://blog.ncircle.com/blogs/vert/archives/2009/03/successful_exploit_renders_mic.html


Last Updated: 27 May 2016 10:50:06