Vulnerability Description
Windows DNS Server in Microsoft Windows 2000 SP4, Server 2003 SP1 and SP2, and Server 2008, when dynamic updates are enabled, does not restrict registration of the "wpad" hostname, which allows remote authenticated users to hijack the Web Proxy Auto-Discovery (WPAD) feature, and conduct man-in-the-middle attacks by spoofing a proxy server, via a Dynamic Update request for this hostname, aka "DNS Server Vulnerability in WPAD Registration Vulnerability," a related issue to CVE-2007-1692.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows 2000 | All versions |
| Microsoft | Windows Server 2003 | All versions |
| Microsoft | Windows Server 2008 | All versions |
Related Weaknesses (CWE)
References
- http://blog.ncircle.com/blogs/vert/archives/2009/03/successful_exploit_renders_m
- http://blogs.technet.com/srd/archive/2009/03/13/ms09-008-dns-and-wins-server-sec
- http://osvdb.org/52519
- http://secunia.com/advisories/34217
- http://support.avaya.com/elmodocs2/security/ASA-2009-083.htm
- http://www.securityfocus.com/bid/33989
- http://www.securitytracker.com/id?1021830
- http://www.us-cert.gov/cas/techalerts/TA09-069A.htmlUS Government Resource
- http://www.vupen.com/english/advisories/2009/0661
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-00
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://blog.ncircle.com/blogs/vert/archives/2009/03/successful_exploit_renders_m
- http://blogs.technet.com/srd/archive/2009/03/13/ms09-008-dns-and-wins-server-sec
- http://osvdb.org/52519
- http://secunia.com/advisories/34217
FAQ
What is CVE-2009-0093?
CVE-2009-0093 is a vulnerability with a CVSS score of 3.5 (LOW). Windows DNS Server in Microsoft Windows 2000 SP4, Server 2003 SP1 and SP2, and Server 2008, when dynamic updates are enabled, does not restrict registration of the "wpad" hostname, which allows remote...
How severe is CVE-2009-0093?
CVE-2009-0093 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-0093?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 2000, Microsoft Windows Server 2003, Microsoft Windows Server 2008.