The DNS server in Microsoft Windows Server 2008 SP2, R2, and R2 SP1 does not properly handle NAPTR queries that trigger recursive processing, which allows remote attackers to execute arbitrary code via a crafted query, aka "DNS NAPTR Query Vulnerability."
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 01:27
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.us-cert.gov/cas/techalerts/TA11-221A.html - US Government Resource | |
References | () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-058 - | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12764 - |
Information
Published : 2011-08-10 21:55
Updated : 2024-11-21 01:27
NVD link : CVE-2011-1966
Mitre link : CVE-2011-1966
CVE.ORG link : CVE-2011-1966
JSON object : View
Products Affected
microsoft
- windows_server_2008
CWE
CWE-20
Improper Input Validation