FortiClient VulnerabilityMicrosoft Windows DNS Server CVE-2020-1350 Remote Code Execution Vulnerability
Description
A remote code execution vulnerability exists in Windows Domain Name System servers when they fail to properly handle requests. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the Local System Account. Windows servers that are configured as DNS servers are at risk from this vulnerability. To exploit the vulnerability, an unauthenticated attacker could send malicious requests to a Windows DNS server. The update addresses the vulnerability by modifying how Windows DNS servers handle requests.
Affected Applications
Windows Server version 2004 (Server Core installation)
Windows Server version 1903 (Server Core installation)
Windows Server 2016
Windows Server 2012
Windows Server 2008
Windows Server version 1909 (Server Core installation)
Windows Server 2019
CVE References
CVE-2020-1350Other References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-1350| ID | 64185 |
| Created | Jul 14, 2020 |
| Description Updated |
Dec 21, 2023 |
| Risk |
|
| Coverage | FortiClient |
| OS | Windows |
| Vendor | Microsoft |
| Patch | auto |
| Application | Windows Server version 2004 (Server Core installation) , Windows Server version 1903 (Server Core installation) , Windows Server 2016 , Windows Server 2012 , Windows Server 2008 , Windows Server version 1909 (Server Core installation) , Windows Server 2019 |