Microsoft addresses critical remote code execution flaw affecting Windows Server DNS services, urging immediate patch deployment.
Microsoft has released security updates addressing a critical vulnerability in Windows DNS Server that could allow remote code execution. The vulnerability, tracked as CVE-2023-23397, has a CVSS score of 9.8 and affects multiple versions of Windows Server.
Attackers could exploit this vulnerability without authentication by sending specially crafted requests to the DNS server. Successful exploitation could allow an attacker to run arbitrary code with system privileges.
"This is a critical vulnerability that should be patched immediately," said Microsoft Security Response Center. "We recommend customers apply the updates as soon as possible."
Affected Products:
- Windows Server 2022
- Windows Server 2019
- Windows Server 2016
- Windows Server 2012 R2
- Windows Server 2012
- Windows Server 2008 R2
Mitigation Steps:
- Apply the security updates immediately
- Restrict DNS server access to trusted networks only
- Implement network segmentation for DNS servers
- Monitor DNS server logs for unusual activity
The updates are available through Windows Update and the Microsoft Update Catalog. Microsoft Security Advisory contains detailed information about the vulnerability and workarounds if patching cannot be performed immediately.
Organizations unable to patch immediately should implement the following temporary mitigations:
- Configure DNS servers to only accept queries from trusted IP addresses
- Deploy network rules to block DNS traffic from untrusted sources
- Enable enhanced logging for DNS server activities
Microsoft has confirmed that they are not aware of any active exploitation of this vulnerability at this time. However, given the severity and potential impact, organizations should treat this with high priority.
For additional information, refer to the Microsoft Security Response Center blog and the Windows DNS Server documentation.
Comments
Please log in or register to join the discussion