Welcome to the Virus Encyclopedia of Panda Security.
|Alias:||Vulnerability in DNS Client Could Allow Spoofing, Vulnerabilidad en el cliente DNS podría permitir la suplantación|
It is an important spoofing vulnerability in Windows DNS Servers on Windows Vista/2003/XP/2000 computers, which allows the Internet traffic to be redirected from legitimate locations.
|First detected on:||April 9, 2008|
|Detection updated on:||April 9, 2008|
MS08-020 is not categorized as virus, worm, Trojan or backdoor. It is an important spoofing vulnerability in Windows DNS Servers on Windows Vista/2003/XP/2000 computers, which allows the Internet traffic to be redirected from legitimate locations.
DNS (Domain Name System) is a name system that allows to translate from domain to IP address and viceversa.
If exploited successfully, MS08-020 allows hackers to gain information about the DNS server's transaction IDs. This information could allow them to send malicious responses to DNS requests, redirecting Internet traffic from legitimate locations to a malicious address.
This vulnerability is usually exploited over the Internet by sending specific responses to an Internet-facing client system that is performing DNS queries.
If you have a Windows Vista/2003/XP/2000 computer, it is recommended to download and apply the security patch for this vulnerability. Click here to access the web page for downloading the patch.