|
|
|||
| Rule General Information |
|---|
| Release Date: | 2020-07-13 | |
| Rule Name: | Microsoft Windows DNS Server Integer Overflow Vulnerability -2 (CVE-2020-1350) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Microsoft Windows is an operating system includes both DNS client and DNS server. An integer overflow vulnerability was found in Microsoft Windows DNS server. The vulnerability is due to improper handling of a specific traffic. Attackers can craft a SIG RR to cause a heap buffer overflow. | |
| Impact: | An attacker can exploit the affected software with a integer overflow vulnerability. Successful exploit leads to execute arbitrary code, and failed exploit may disturb the software logic and cause denial of service. | |
| Affected OS: | Windows | |
| Reference: | ||
| Solutions |
|---|
| Visit Microsoft technique center to aquire the patch. |