CVE-2000-1218

Summary

CVE-2000-1218 is a vulnerability affecting Microsoft Windows 98, NT 4.0, 2000, and XP. The issue lies in the default configuration of the domain name resolver, which sets the QueryIpMatching parameter to 0. Consequently, these operating systems accept DNS updates from unqueried hosts, making them susceptible to DNS cache poisoning attacks. An attacker can exploit this flaw to redirect users to fraudulent websites or intercept their internet traffic, posing a significant security risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.