DNSの脆弱性とか、自動更新を止めるワームとか
Thursday, July 24, 2008
小野寺です。 **DNS の脆弱性について **さて、まずは DNS 関係から触れたいと思います。7/9 に DNS の脆弱性に対処
DNS
MS08-037 : More entropy for the DNS resolver
Tuesday, July 08, 2008
We released security bulletin MS08-020 two months ago to improve the DNS transaction ID entropy. You can read more about the MS08-020 algorithm change in this blog entry. Increasing the entropy makes it more difficult for attackers to spoof DNS replies. Today, we released MS08-037 to further increase the difficulty of spoofing DNS transactions.
MS08-020 : How predictable is the DNS transaction ID?
Wednesday, April 09, 2008
Today we released MS08-020 to address a weakness in the Transaction ID (TXID) generation algorithm in the DNS client resolver. The TXID is a 16-bit entity that is primarily used as a synchronization mechanism between DNS servers/clients; in fact, you can think of it as an Initial Sequence Number (ISN) for DNS query/response exchanges.
MS07-065 - The case of the significant suffix
Thursday, December 27, 2007
MS07-065 fixed a vulnerability in the Message Queueing service. On Windows 2000, a remote anonymous attacker could use this vulnerability to run code as local system on unpatched machines. Windows XP added defense-in-depth hardening to disallow remote access for this service that does not need to be exposed remotely. So on Windows XP, the attacker must be logged on locally on the box.