Revision Date: | 2011-04-25 | Version: | 5 |
Title: | ISA Server Reverse DNS Lookup Results Spoofing |
Description: | Microsoft Proxy Server 2.0 and Microsoft ISA Server 2000 (which is included in Small Business Server 2000 and Small Business Server 2003 Premium Edition) allows remote attackers to spoof trusted Internet content on a specially crafted webpage via spoofed reverse DNS lookup results. |
Family: | windows | Class: | vulnerability |
Status: | ACCEPTED | Reference(s): | CVE-2004-0892
|
Platform(s): | Microsoft Windows 2000
| Product(s): | Microsoft Internet Security and Acceleration Server 2000
|
Definition Synopsis |
the version of msphlpr.dll is less than 3.0.1200.408 AND ISA Server 2000 SP2 (or earlier) is installed
AND the patch KB888258 is installed
|