June 2018, and Windows Server can be pwned with a DNS request

12 June 2018

Microsoft has released its monthly security update, addressing a total of 51 CVE-listed security vulnerabilities.

The June edition of Patch Tuesday includes 11 fixes for critical vulnerabilities in Windows, including Microsoft’s solution for the recently-disclosed Spectre Variant 4 chip design flaw.

Among the most serious bugs addressed this month is CVE-2018-8225, a remote code execution vulnerability present in the Windows DNSAPI. Microsoft says that the flaw would allow an attacker to take over the target system (either Windows or Windows Server) simply by sending a malformed DNS request.

Read full news article on The Register

Date:

12 June 2018

Categorie(s):

NEWS

Tag(s):

DNS, Infrastructure Development, Microsoft, Networking, Windows Server

Future Unveiled: Q&A with Drew Firment on AI, Cloud, & Beyond6 May 2024
Apple’s iPhone Spyware Problem Is Getting Worse. Here’s What You Should Know6 May 2024
NinjaOne platform enhancements help security teams identify potential vulnerabilities6 May 2024
What Are The Best Free VPN Services For Ukraine?6 May 2024
BlackBasta claims Synlab attack, leaks some stolen documents6 May 2024