What is CVE-2009-0093?

CVE-2009-0093 is a vulnerability in N/a. Published 2009-03-11.

Is CVE-2009-0093 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2009-0093

Windows DNS Server in Microsoft Windows 2000 SP4, Server 2003 SP1 and SP2, and Server 2008, when dynamic updates are enabled, does not restrict registration of the "wpad" hostname, which allows remote authenticated users to hijack the Web…

EPSS: 0.525 (98.0th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

oval:org.mitre.oval:def:6138 (x_refsource_OVAL, signature, vdb-entry)
TA09-069A (x_refsource_CERT, third-party-advisory)
blog.ncircle.com/blogs/vert/archives/2009/03/successful_exploit_renders_mic.html (x_refsource_MISC)
ADV-2009-0661 (vdb-entry, x_refsource_VUPEN)
34217 (x_refsource_SECUNIA, third-party-advisory)
52519 (x_refsource_OSVDB, vdb-entry)
33989 (vdb-entry, x_refsource_BID)
support.avaya.com/elmodocs2/security/ASA-2009-083.htm (x_refsource_CONFIRM)
MS09-008 (x_refsource_MS, vendor-advisory)
1021830 (vdb-entry, x_refsource_SECTRACK)

Frequently asked questions

What is CVE-2009-0093?: CVE-2009-0093 is a vulnerability in N/a. Published 2009-03-11.
Is CVE-2009-0093 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.