New bug hits Windows DNS service

New DNS exploit could allow hackers to take over Windows servers, exploits already in the wild.

A vulnerability in the Domain Name System (DNS) service in Windows 2003 server could allow hackers to take over servers and run remote code.

According to a security advisory from Microsoft, the flaw affects Windows 2000 Server Service Pack 4, Windows Server 2003 Service Pack 1 and Service Pack 2. Its initial investigations revealed that attempts to exploit this vulnerability could allow an attacker to run code in the security context of the DNS server service, which by default runs as local system.

"Upon completion of this investigation, Microsoft will take appropriate action to help protect our customers," the company said on its advisory. "This may include providing a security update through our monthly release process or providing an out-of-cycle security update, depending on customer needs."

The bug was brought to light by the French Security Incident Response Team. It found that flaw was caused by a stack overflow error in the Windows DNS Server's RPC interface implementation when processing malformed requests sent to a port between 1024 and 5000.

According to the organisation, this vulnerability is currently being exploited in the wild. It said as a workaround system administrators should disable remote management over RPC capability for DNS servers or block unsolicited inbound traffic on ports 1024 to 5000, until a fix is developed.

The news of the vulnerability comes just days after Microsoft released patches for four critical flaws in Windows and its Content Management Server software. At the beginning of the month the company had to release an out-of-cycle patch for a vulnerability affecting the way Windows handles animated cursors.

Featured Resources

Four cyber security essentials that your board of directors wants to know

The insights to help you deliver what they need

Download now

Data: A resource much too valuable to leave unprotected

Protect your data to protect your company

Download now

Improving cyber security for remote working

13 recommendations for security from any location

Download now

Why CEOS should care about the move to SAP S/4HANA

And how they can accelerate business value

Download now

Recommended

DeviceSHIELD combats rising cyber attacks and online fraud amid COVID-19
Security

DeviceSHIELD combats rising cyber attacks and online fraud amid COVID-19

24 Nov 2020
350,000 Spotify users hacked in credential stuffing attack
Security

350,000 Spotify users hacked in credential stuffing attack

24 Nov 2020
WAPDropper malware hooks you up to premium telecoms services
Security

WAPDropper malware hooks you up to premium telecoms services

24 Nov 2020
VMware sounds alarm over zero-day flaws in multiple products
Security

VMware sounds alarm over zero-day flaws in multiple products

24 Nov 2020

Most Popular

macOS Big Sur is bricking some older MacBooks
operating systems

macOS Big Sur is bricking some older MacBooks

16 Nov 2020
46 million Animal Jam accounts leaked after comms software breach
Security

46 million Animal Jam accounts leaked after comms software breach

13 Nov 2020
How computing has revolutionised Formula 1
Sponsored

How computing has revolutionised Formula 1

11 Nov 2020