DNS Server Flaw on Windows 2000 and 2003 servers

Yesterday I told my students that if they are serious about providing a DNS service they should use Linux. Today I received some justification for this choice..
Microsoft have issued a severe warning about a serious issue for DNS servers that runs on Windows 2000 Server Service Pack 4, and Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2. The flaw allows a buffer overflow attack on the DNS remote procedure call interface, this means that the hacker can run code within the context of the security rights of the DNS service.
It would be nice if they would fix the update PTR record bug while they are at it.
Network World – Microsoft warns of dangerous flaw in DNS server

Leave a Reply

Your email address will not be published. Required fields are marked *