CVE-2006-0988

Current Description

The default configuration of the DNS Server service on Windows Server 2003 and Windows 2000, and the Microsoft DNS Server service on Windows NT 4.0, allows recursive queries and provides additional delegation information to arbitrary IP addresses, which allows remote attackers to cause a denial of service (traffic amplification) via DNS queries with spoofed source IP addresses.

Evaluator Description

This vulnerability affects all versions of Windows 2000 -and- Windows Server 2003.

Basic Data

PublishedMarch 03, 2006
Last ModifiedOctober 18, 2018
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeNVD-CWE-Other
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:L/Au:N/C:N/I:N/A:C
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactNONE
CVSS 2 - Availability ImpactCOMPLETE
CVSS 2 - Base Score7.8
SeverityHIGH
Exploitability Score10.0
Impact Score6.9
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3OSMicrosoftWindows 2000********
    2.3OSMicrosoftWindows 2003 Serverr2*******
    2.3OSMicrosoftWindows Nt4.0*******

Vulnerable Software List

VendorProductVersions
Microsoft Windows 2000 *
Microsoft Windows 2003 Server r2
Microsoft Windows Nt 4.0

References

NameSourceURLTags
http://dns.measurement-factory.com/surveys/sum1.htmlhttp://dns.measurement-factory.com/surveys/sum1.htmlMISC
20060228 recursive DNS servers DDoS as a growing DDoS problemhttp://www.securityfocus.com/archive/1/426368/100/0/threadedBUGTRAQ
http://www.us-cert.gov/reading_room/DNS-recursion121605.pdfhttp://www.us-cert.gov/reading_room/DNS-recursion121605.pdfMISCPATCH Vendor Advisory