Microsoft warns of critical Windows DNS Server vulnerability that’s ‘wormable’

Image by Alex Castro / The Verge

Microsoft is warning of a 17-year-old critical Windows DNS Server vulnerability that the company has classified as “wormable.” Such a flaw could allow attackers to create special malware that remotely executes code on Windows servers and creates malicious DNS queries that could even eventually lead to a company’s infrastructure being breached.

“Wormable vulnerabilities have the potential to spread via malware between vulnerable computers without user interaction,” explains Mechele Gruhn,  a principal security program manager at Microsoft. “Windows DNS Server is a core networking component. While this vulnerability is not currently known to be used in active attacks, it is essential that customers apply Windows updates to address this…

Continue reading…

via The Verge – All Posts

Check out the Finding Your Identity Podcast!