CVE-2000-1218 vulnerability in Microsoft Products
Published on April 14, 2000

The default configuration for the domain name resolver for Microsoft Windows 98, NT 4.0, 2000, and XP sets the QueryIpMatching parameter to 0, which causes Windows to accept DNS updates from hosts that it did not query, which allows remote attackers to poison the DNS cache.

NVD

Products Associated with CVE-2000-1218

Want to know whenever a new CVE is published for Microsoft products? stack.watch will email you.

Microsoft Windows Nt

Microsoft Windows XP

Microsoft Windows 2000

Microsoft Windows 98

Microsoft Windows 98se

Exploit Probability

EPSS

1.71%

Percentile

82.08%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2000-1218 vulnerability in Microsoft ProductsPublished on April 14, 2000

Products Associated with CVE-2000-1218

Exploit Probability

CVE-2000-1218 vulnerability in Microsoft Products
Published on April 14, 2000