Microsoft Windows could provide weaker than expected security, caused by a design error within the DNS devolution process. An attacker could redirect a user to a malicious Web site that would appear to be trusted to launch further attacks on the system.