QID 92116

Date Published: 2024-02-14

QID 92116: Microsoft Windows Domain Name System (DNS) Server Denial of Service (DoS) Vulnerability for February 2024

Microsoft Windows Domain Name System (DNS) Server Security Update - February 2024

Affected Operating Systems: Windows Server 2012, Windows Server 2012 R2, Windows Server 2008 R2 Service Pack 1, Windows Server 2016, Windows Server 2022, Windows Server 2019, Windows Server 2022, 23H2 Edition (Server Core installation)

The KB Articles associated with the update:
Patch version is 6.3.9600.21812 for KB5034819
Patch version is 6.2.9200.24709 for KB5034830
Patch version is 6.1.7601.26959 for KB5034831
Patch version is 6.1.7601.26959 for KB5034809
Patch version is 10.0.14393.6707 for KB5034767
Patch version is 10.0.25398.709 for KB5034769
Patch version is 10.0.20348.2322 for KB5034770
Patch version is 10.0.17763.5458 for KB5034768

QID Detection Logic:
Authenticated: This QID checks for the file version of dns.exe

Unauthenticated: This QID checks for vulnerable version of Microsoft DNS by checking the DNS version exposed in the banner.

Successful exploitation of this vulnerability may allow an attacker to exhaust CPU and cause Denial of Service (DoS).

  • CVSS V3 rated as High - 7.5 severity.
  • CVSS V2 rated as Medium - 5 severity.
    • Solution
    Vendor has released patch. Please refer to Microsoft Windows DNS Server Security Advisory for more information.

    Vendor References

    CVEs related to QID 92116

    CVE-2023-50387 |
    Software Advisories
    Advisory ID Software Component Link
    Microsoft Windows DNS Server Security Advisory URL Logo msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-50387
    By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].