{"id":27638,"date":"2020-07-15T12:12:00","date_gmt":"2020-07-15T09:12:00","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/microsoft-has-patched-a-critical-wormable-vulnerability-in-windows-dns-server\/"},"modified":"2020-07-15T12:12:00","modified_gmt":"2020-07-15T09:12:00","slug":"microsoft-has-patched-a-critical-wormable-vulnerability-in-windows-dns-server","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/microsoft-has-patched-a-critical-wormable-vulnerability-in-windows-dns-server\/","title":{"rendered":"#Microsoft has patched a critical \u2018wormable\u2019 vulnerability in Windows DNS Server"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a2abda677d7a\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a2abda677d7a\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/microsoft-has-patched-a-critical-wormable-vulnerability-in-windows-dns-server\/#To_work_around_this_vulnerability\" >To work around this vulnerability,<\/a><\/li><\/ul><\/nav><\/div>\n<p>&#8220;<strong>#Microsoft has patched a critical \u2018wormable\u2019 vulnerability in Windows DNS Server<\/strong>&#8221;<\/p>\n<article id=\"post-30509\" target=\"_blank\">\n<div>Microsoft has announced a new patch that resolves a critical vulnerability in Windows DNS Server that is classified as a \u2018wormable\u2019 vulnerability and has a CVSS base score of 10.0. <\/p>\n<p>RECOMMENDED: Click here to fix Windows errors and optimize system performance<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" alt=\"Cloud Network Banner\" height=\"522\"  src=\"https:\/\/winaero.com\/blog\/wp-content\/uploads\/2018\/10\/Cloud-Network-banner.png\"  width=\"800\"><\/img><\/p>\n<p>Wormable vulnerabilities have the potential to spread via malware between vulnerable computers without user interaction. Windows DNS Server is a core networking component. While this vulnerability is not currently known to be used in active attacks, it is essential that customers <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">app<\/a>ly Windows updates to address this vulnerability as soon as possible.<\/p>\n<p>The patched vulnerability, CVE-2020-1350, is described by Microsoft as follows.<\/p>\n<blockquote>\n<div>\n<p class=\"\">A remote code execution vulnerability exists in Windows Domain Name System servers when they fail to properly handle requests. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the Local System Account. Windows servers that are configured as DNS servers are at risk from this vulnerability.<\/p>\n<p>To exploit the vulnerability, an unauthenticated attacker could send malicious requests to a Windows DNS server.<\/p>\n<p>The update addresses the vulnerability by modifying how Windows DNS servers handle requests.<\/p>\n<\/div>\n<\/blockquote>\n<p>Customers with automatic updates turned on do not need to take any additional action, says Microsoft. The listed patches will fix it when installed.<\/p>\n<p>If the update is not accessible, it is possible to mitigate the vulnerability with a Registry tweak.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"To_work_around_this_vulnerability\"><\/span>To work around this vulnerability,<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Make the following registry change to restrict the size of the largest inbound TCP-based DNS response packet allowed:<\/p>\n<p><code>HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesDNSParameters<\/code><\/p>\n<p><code>TcpReceivePacketSize<\/code><\/p>\n<p><code>Value = 0xFF00<\/code><\/p>\n<p><strong>Note<\/strong> You must\u00a0restart the DNS Service for the registry change to take effect.<\/p>\n<ul>\n<li>The Default (also max) Value = <code>0xFFFF<\/code><\/li>\n<li>The Recommended Value = <code>0xFF00<\/code> (255 bytes less than the max)<\/li>\n<\/ul>\n<p>After the workaround is implemented, a Windows DNS server will be unable to resolve DNS names for its clients when the DNS response from the upstream server is larger than 65280 bytes.<\/p>\n<p>RECOMMENDED: Click here to fix Windows errors and optimize system performance<\/p>\n<\/div>\n<\/article>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more like this article, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/technology\/\" target=\"_blank\" rel=\"noopener noreferrer\">Technology category.<\/a><\/span><\/strong>\n<\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>if you want to <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/watch-movies-tv-seriess\/\" data-internallinksmanager029f6b8e52c=\"8\" title=\"Watch Movies &amp; TV Series\" target=\"_blank\" rel=\"noopener\">watch Movies<\/a> or Tv Shows go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/dizi.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener noreferrer\">Dizi.BuradaBiliyorum.Com<\/a> <\/span> for forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener noreferrer\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/winaero.com\/blog\/microsoft-has-patched-a-critical-wormable-vulnerability-in-windows-dns-server\/\" target=\"_blank\" rel=\"noopener noreferrer\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8220;#Microsoft has patched a critical \u2018wormable\u2019 vulnerability in Windows DNS Server&#8221; Microsoft has announced a new patch that resolves a critical vulnerability in Windows DNS Server that is classified as a \u2018wormable\u2019 vulnerability and has a CVSS base score of 10.0. RECOMMENDED: Click here to fix Windows errors and optimize system performance Wormable vulnerabilities have&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"","fifu_image_alt":"","footnotes":""},"categories":[18],"tags":[38946,34290],"class_list":["post-27638","post","type-post","status-publish","format-standard","hentry","category-technology","tag-microsoft-has-patched-a-critical-wormable-vulnerability-in-windows-dns-server","tag-windows-10"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/27638","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=27638"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/27638\/revisions"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=27638"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=27638"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=27638"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}