9.4 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:C/A:C
6.2 Medium
AI Score
Confidence
High
0.469 Medium
EPSS
Percentile
97.5%
Unspecified vulnerability in Microsoft DNS in Windows 2000 SP4, Server 2003 SP1 and SP2, and Server 2008 allows remote attackers to conduct cache poisoning attacks via unknown vectors related to accepting βrecords from a response that is outside the remote serverβs authority,β aka βDNS Cache Poisoning Vulnerability,β a different vulnerability than CVE-2008-1447.
secunia.com/advisories/30925
www.securityfocus.com/bid/30132
www.securitytracker.com/id?1020437
www.us-cert.gov/cas/techalerts/TA08-190A.html
www.vupen.com/english/advisories/2008/2019/references
docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-037
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5380