|Posted by:||firstname.lastname@example.org (email@example.com)|
|Date:||Wed, 1 Aug 2007|
Two clarifying questions regarding The DNS Client Buffer Overrun
Vulnerability (CVE-2006-3441) referenced in MS06-041
1) is the DNS server (ie: on Win2000, Win2K) vulnerable in any way if a
client attempts to query an "evil" dns record from an "evil" dns server, or
is this just a dns client resolver issue?
2) if the client passes its DNS query requst to a "good" upstream DNS server
(Windows or otherwise), will that server "pass thru" any potential attack
payload, or can the vulnerability only occur if the client is directly
resolving to a "evil" dns server?