CERT-In:Indian Computer Emergency Response Team

HOME > ADVISORIES

ADVISORIES

CERT-In Advisory CIAD-2007-59
Multiple Vulnerabilities in various components of Microsoft Windows: Microsoft DNS Server, Microsoft Windows URI

Original issue date: November 14, 2007

Systems Affected

Microsoft DNS Server
Microsoft Windows URI

Overview

Multiple vulnerabilities have been reported in various components of Microsoft Windows: Microsoft DNS Server, Microsoft Windows URI.

Description

The vulnerability notes released by CERT-In with reference to Microsoft Security Bulletins are given below:

Microsoft Security Bulletin	Severity	CERT-In Vulnerability Notes
MS07-061: Vulnerability in Windows URI Handling Could Allow Remote Code Execution	High	CIVN-2007-92: Microsoft Windows URI Handling Command Execution Vulnerability
MS07-062: DNS Spoofing Attack Vulnerability	Medium	CIVN-2007-142: Remote Code Execution Vulnerability in Microsoft DNS Server

Solution

Apply appropriate patches as mentioned in Microsoft Security Bulletin November 2007
http://www.microsoft.com/technet/security/bulletin/ms07-nov.mspx

Vendor Information

Microsoft Corporation
http://www.microsoft.com/technet/security/bulletin/ms07-nov.mspx

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information

Phone: +91-11-24368572

Postal address

Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003

Home || Feedback || FAQ || Disclaimer

CERT-In Advisory CIAD-2007-59 Multiple Vulnerabilities in various components of Microsoft Windows: Microsoft DNS Server, Microsoft Windows URI

CERT-In Advisory CIAD-2007-59
Multiple Vulnerabilities in various components of Microsoft Windows: Microsoft DNS Server, Microsoft Windows URI