CVE-2000-1218

The default configuration for the domain name resolver for Microsoft Windows 98, NT 4.0, 2000, and XP sets the QueryIpMatching parameter to 0, which causes Windows to accept DNS updates from hosts that it did not query, which allows remote attackers to poison the DNS cache.

Published: Apr 14, 2000
Updated: May 9, 2024
CVE: CVE-2000-1218
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-346

Affected Software
References

Software	From	Fixed in
microsoft / windows_nt	4.0	4.0.x

http://www.kb.cert.org/vuls/id/458659
https://exchange.xforce.ibmcloud.com/vulnerabilities/4280

Vulnerability Database

290,273

CVE-2000-1218