M
msb-2007@nospam.nospam
Two clarifying questions regarding The DNS Client Buffer Overrun
Vulnerability (CVE-2006-3441) referenced in MS06-041
1) is the DNS server (ie: on Win2000, Win2K) vulnerable in any way if a
client attempts to query an "evil" dns record from an "evil" dns server, or
is this just a dns client resolver issue?
2) if the client passes its DNS query requst to a "good" upstream DNS server
(Windows or otherwise), will that server "pass thru" any potential attack
payload, or can the vulnerability only occur if the client is directly
resolving to a "evil" dns server?
thanks!
-Matt
Vulnerability (CVE-2006-3441) referenced in MS06-041
1) is the DNS server (ie: on Win2000, Win2K) vulnerable in any way if a
client attempts to query an "evil" dns record from an "evil" dns server, or
is this just a dns client resolver issue?
2) if the client passes its DNS query requst to a "good" upstream DNS server
(Windows or otherwise), will that server "pass thru" any potential attack
payload, or can the vulnerability only occur if the client is directly
resolving to a "evil" dns server?
thanks!
-Matt