MS06-041 exposure

Giganews Newsgroups
Subject: MS06-041 exposure
Posted by:  msb-2007@nospam.nospam (
Date: Wed, 1 Aug 2007

Two clarifying questions regarding The DNS Client Buffer Overrun
Vulnerability (CVE-2006-3441) referenced in MS06-041
1) is the DNS server (ie: on Win2000, Win2K) vulnerable in any way if a
client attempts to query an "evil" dns record from an "evil" dns server, or
is this just a dns client resolver issue?
2) if the client passes its DNS query requst to a "good" upstream DNS server
(Windows or otherwise), will that server "pass thru" any potential attack
payload, or can the vulnerability only occur if the client is directly
resolving to a "evil" dns server?