New bug hits Windows DNS service
By Rene Millman,
A vulnerability in the Domain Name System (DNS) service in Windows 2003 server could allow hackers to take over servers and run remote code.
According to a security advisory from Microsoft, the flaw affects Windows 2000 Server Service Pack 4, Windows Server 2003 Service Pack 1 and Service Pack 2. Its initial investigations revealed that attempts to exploit this vulnerability could allow an attacker to run code in the security context of the DNS server service, which by default runs as local system.
"Upon completion of this investigation, Microsoft will take appropriate action to help protect our customers," the company said on its advisory. "This may include providing a security update through our monthly release process or providing an out-of-cycle security update, depending on customer needs."
The bug was brought to light by the French Security Incident Response Team. It found that flaw was caused by a stack overflow error in the Windows DNS Server's RPC interface implementation when processing malformed requests sent to a port between 1024 and 5000.
According to the organisation, this vulnerability is currently being exploited in the wild. It said as a workaround system administrators should disable remote management over RPC capability for DNS servers or block unsolicited inbound traffic on ports 1024 to 5000, until a fix is developed.
The news of the vulnerability comes just days after Microsoft released patches for four critical flaws in Windows and its Content Management Server software. At the beginning of the month the company had to release an out-of-cycle patch for a vulnerability affecting the way Windows handles animated cursors.
advertisement
Latest Security Features
Where will IT be in 2015?
You’re ready to tackle the IT challenges of the next year, but what’s going to happen in the longer term? What will the IT world of 2015 mean to you?
- Q&A - John Stewart, Cisco's chief security officer
- NHS IT - something to celebrate?
- Q&A – Tom Ilube, head of Garlik
- Ten of the most infamous ‘black hat’ hackers
- USB Flash Disks: A modern day business curse?
- Creating a mobile data management policy
- Behind the scenes: Symantec's malware battle
- The rise of storage security
- Google Mail Security
Latest Security Reviews
AVG Internet Security SBS Edition 8.0
Rating: 
- Finjan Vital Security Web Appliance NG-6000S
- LogLogic MX2010
- Exclusive: WatchGuard Firebox Core X750e
- Sophos ES4000 Security Appliance
- Microsoft Forefront Security for Exchange and SharePoint
- EXCLUSIVE: Juniper Networks SSG 550 UTM appliance
- EXCLUSIVE: Arbor Networks Peakflow X 3.7
- EXCLUSIVE: Check Point UTM-1 1050
- EXCLUSIVE: Finjan Vital Security NG-5100
advertisement
Latest News Videos in Security
Video: Q&A with Richard Archdeacon, Symantec
PlayIT PRO speaks to Richard Archdeacon, director, global services, at the information security software vendor Symantec.
White papers
Want more background on today's hottest IT trends?
Visit IT PRO's white paper library for more on virtualisation, encryption and other topics.
Register for IT PRO
You'll get exclusive member benefits including free white papers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.
Social Bookmark this article: What is this?