The default configuration for the domain name resolver for Microsoft Windows 98, NT 4.0, 2000, and XP sets the QueryIpMatching parameter to 0, which causes Windows to accept DNS updates from hosts that it did not query, which allows remote malicious users to poison the DNS cache.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft windows nt 4.0 |
||
microsoft windows xp - |
||
microsoft windows 2000 - |
||
microsoft windows 98 - |
||
microsoft windows 98se - |