I bet some of the state sponsored hacking groups are pissed this got out.Not sure how many of you are Sysadmins or know of any. Extremely dangerous vulnerability found in Microsoft DNS service. Allows full remote code exploit. Very easy to be wormable. Workaround and patches are available now. *this is no joke*
SIGRed - Resolving Your Way into Domain Admin: Exploiting a 17 Year-old Bug in Windows DNS Servers - Check Point Research
Research by: Sagi Tzadik Introduction DNS, which is often described as the “phonebook of the internet”, is a network protocol for translating human-friendly computer hostnames into IP addresses. Because it is such a core component of the internet, there are many solutions and implementations of...research.checkpoint.com