Orange Business Services
Vigil@nce Vigil@nce Vigil@nce
we track for your security since 1999
 home presentation vulnerabilities documentation contact  
subscriber area subscriber area
free access free access
Vigil@nce team describes computer vulnerabilities impacting your systems, and offers solutions to correct them.
recent vulnerabilities recent vulnerabilities
tracked products tracked products
RSS feed RSS feed
vulnerability

vulnerability bulletin CVE-2010-1689 CVE-2010-1690

Exchange, Windows: DNS poisoning

Synthesis of the vulnerability

An attacker can poison the DNS cache of Microsoft Exchange Server and Windows SMTP Service.
Severity: 3/4.
Creation date: 05/05/2010.

Description of the vulnerability

The Microsoft Exchange Server and Windows SMTP Service products implement a DNS client, which resolves the IP address associated to the messaging server of a domain. Two vulnerabilities can be used by an attacker to send fake DNS replies, so this client obtains a malicious IP address.

Queries generated by the DNS client use a transaction identifier which is predictable. [severity:2/4; BID-39908, CVE-2010-1689, >]

The DNS client does not check the transaction identifier of received DNS replies. [severity:3/4; BID-39910, CVE-2010-1690, >]

An attacker can therefore poison the DNS cache of Microsoft Exchange Server and Windows SMTP Service.

Complete Vigil@nce bulletin

Access to the complete Vigil@nce bulletin

Characteristics

Title: Exchange, Windows: DNS poisoning.
Keywords: DNS Exchange Microsoft SMTP Server Service Windows poisoning.
Identifiers: 981832, BID-39908, BID-39910, CORE-2010-0427, CVE-2010-1689, CVE-2010-1690, MS10-024, VIGILANCE-VUL-9628.

Information sources

Publications and announces

Solutions for this vulnerability

Patch or workaround

Supplements

Vulnerability : CVE-2010-1689

Queries generated by the DNS client use a transaction identifier which is predictable.
Severity: 2/4.
Identifiers: BID-39908, CVE-2010-1689.

Vulnerability : CVE-2010-1690

The DNS client does not check the transaction identifier of received DNS replies.
Severity: 3/4.
Identifiers: BID-39910, CVE-2010-1690.

Computer vulnerabilities tracking service

The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system.
The Vigil@nce vulnerability database contains several thousand vulnerabilities.
This bulletin is published by the Vigil@nce team, which tracks computer vulnerabilities impacting systems and applications.
Computer vulnerability database



















France Télécom Copyright 1999-2010 Vigil@nce. Vigil@nce is a service from Orange Business Services. Site map. Legal notice. Version française