Saturday, August 15, 02:37
Home security SigRed allows hijacking on Microsoft Windows Server

SigRed allows hijacking on Microsoft Windows Server

A vulnerability by name SigRed, which may affect the Microsoft Windows Server was discovered to exist in code of the system for 17 years.

SigRed

The vulnerability was rated by CVSS 10,0 and the researchers security advise organizations to update their systems immediately.

Discovered by Check Point researcher Sagi Tzaik and affects Microsoft Windows DNS and Server software.

According to the researchers, the vulnerability is particularly critical as it has the ability to self-transmit, and thus is able to switch to vulnerable machines without any interaction with the user and put in risk the set of computers in a network.

Taking advantage of the defect, “one hacker can generate malicious DNS requests on their DNS servers Windows and achieve arbitrary code execution that could lead to a breach of the entire infrastructure, ”the team says.

SigRed affects all versions of Windows Server from 2003 to 2019.

SigRed

The vulnerability is located in the way Windows DNS Server handles an incoming DNS request, as well as in the way DNS requests are handled. Specifically, sending a DNS request with a SIG record over 64KB can "cause a heap-based buffer overflow of about 64KB on a small assigned buffer," the team says.

As the service runs with increased privileges, if one intruder manages to exploit it, also acquires administrator rights. More rarely, the vulnerability can be activated remotely through browser sessions.

Check Point reported its findings to Microsoft on May 19th. Microsoft has released a information which corrects vulnerability.

Although the company states that it has not discovered any exploitation of this vulnerability by malicious agents, it does not rule out the fact that it has been in its systems for 17 whole years. So it is very difficult to say with certainty that it has not been exploited by hackers from time to time.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement

LIVE NEWS

Relax with these short horror and sci-fi movies!

Do you dream of other planets, other realities or other schedules? If you wish you could travel somewhere else you should see these little ...

6 ways your location can be traced through your iPhone!

Your iPhone can be configured to show your location in real time to anyone. Also indicates your location ...

How to delete your Spotify account?

Have you decided to stop using Spotify and want to close your account permanently? See how ...

Holidays, baths, public WiFi: Guess which one not to choose?

Holidays, baths, public WiFi: Guess which one not to choose? August is here and most are getting ready for their summer vacation ....

Cyber ​​Security Career: Why Choose It Now?

With unemployment being at very high levels due to the coronavirus and with companies trying to restructure companies ...

Get MIUI 12 "Focus Mode" on any Xiaomi device

Focus Mode is one of the best features of MIUI 12. This feature was first introduced in MIUI 11, but there are ...

The 20 best gaming consoles of all time

On the threshold of the new generation of consoles, such as the PlayStation 5 and the Xbox Series X, these are the most important and ...

Smart locks: Every home needs to have one!

Home security is a complex issue, but anything is safer than hiding a spare key in a very ...

LinkedIn: How do you record and display the pronunciation of your name?

Having a last name that almost no one pronounces correctly can sometimes be annoying. Thus, LinkedIn attempts ...

Cyber ​​attacks: 5 steps to deal with security incidents

Every organization is prone to cyber attacks and, when it happens, there is a small line between rescuing your network security and ...