CVE-2009-0233
published 2009-03-11CVE-2009-0233: The DNS Resolver Cache Service (aka DNSCache) in Windows DNS Server in Microsoft Windows 2000 SP4, Server 2003 SP1 and SP2, and Server 2008, when dynamic…
PriorityP341medium5.8CVSS 2.0
AVNACMAuNCNIPAP
EPSS
27.07%
97.8th percentile
The DNS Resolver Cache Service (aka DNSCache) in Windows DNS Server in Microsoft Windows 2000 SP4, Server 2003 SP1 and SP2, and Server 2008, when dynamic updates are enabled, does not reuse cached DNS responses in all applicable situations, which makes it easier for remote attackers to predict transaction IDs and poison caches by simultaneously sending crafted DNS queries and responses, aka "DNS Server Query Validation Vulnerability."
CVSS provenance
nvdv2.05.8MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:P
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-rpp6-wwx5-r6pr: The DNS Resolver Cache Service (aka DNSCache) in Windows DNS Server in Microsoft Windows 2000 SP4, Server 2003 SP1 and SP2, and Server 2008, when dyna
ghsa_unreviewed·2022-05-02
CVE-2009-0233 [MEDIUM] CWE-20 GHSA-rpp6-wwx5-r6pr: The DNS Resolver Cache Service (aka DNSCache) in Windows DNS Server in Microsoft Windows 2000 SP4, Server 2003 SP1 and SP2, and Server 2008, when dyna
The DNS Resolver Cache Service (aka DNSCache) in Windows DNS Server in Microsoft Windows 2000 SP4, Server 2003 SP1 and SP2, and Server 2008, when dynamic updates are enabled, does not reuse cached DNS responses in all applicable situations, which makes it easier for remote attackers to predict transaction IDs and poison caches by simultaneously sending crafted DNS queries and responses, aka "DNS Server Query Validation Vulnerability."
Red Hat
firefox: does not properly prevent the literal rendering of homoglyph characters in IDN domain names (spoof URLs and conduct phishing attacks)
vendor_redhat·2009-02-16·CVSS 7.5
CVE-2009-0652 [HIGH] firefox: does not properly prevent the literal rendering of homoglyph characters in IDN domain names (spoof URLs and conduct phishing attacks)
firefox: does not properly prevent the literal rendering of homoglyph characters in IDN domain names (spoof URLs and conduct phishing attacks)
The Internationalized Domain Names (IDN) blacklist in Mozilla Firefox 3.0.6 and other versions before 3.0.9; Thunderbird before 2.0.0.21; and SeaMonkey before 1.1.15 does not include box-drawing characters, which allows remote attackers to spoof URLs and conduct phishing attacks, as demonstrated by homoglyphs of the / (slash) and ? (question mark) characters in a subdomain of a .cn domain name, a different vulnerability than CVE-2005-0233. NOTE: some third parties claim that 3.0.6 is not affected, but much older versions perhaps are affected.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://blogs.technet.com/srd/archive/2009/03/13/ms09-008-dns-and-wins-server-security-update-in-more-detail.aspxhttp://osvdb.org/52517http://secunia.com/advisories/34217http://support.avaya.com/elmodocs2/security/ASA-2009-083.htmhttp://www.securityfocus.com/bid/33982http://www.securitytracker.com/id?1021831http://www.us-cert.gov/cas/techalerts/TA09-069A.htmlhttp://www.vupen.com/english/advisories/2009/0661https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-008https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6228http://blogs.technet.com/srd/archive/2009/03/13/ms09-008-dns-and-wins-server-security-update-in-more-detail.aspxhttp://osvdb.org/52517http://secunia.com/advisories/34217http://support.avaya.com/elmodocs2/security/ASA-2009-083.htmhttp://www.securityfocus.com/bid/33982http://www.securitytracker.com/id?1021831http://www.us-cert.gov/cas/techalerts/TA09-069A.htmlhttp://www.vupen.com/english/advisories/2009/0661https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-008https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6228
2009-03-11
Published