<img alt="" src="https://secure.hiss3lark.com/173130.png" style="display:none;">

Datashield's Resource Library

Read all of our news, articles, reviews, and more in our company blog

All Posts

Vulnerability CVE-2020-1350

Vulnerability CVE-2020-1350

Microsoft released a security bulletin today detailing a RCE in all known Windows DNS Servers, with a base CVSS score of 10.0.

Datashield recommends patching any public facing windows DNS servers immediately. If patching isn’t possible, implementing the temporary workaround outlined Microsoft would mitigate the concern until a patch can be scheduled.

We do also recommend patching internal windows DNS servers as well, as once a POC is published, this will be a common avenue for lateral movement in windows environments by both malware and penetration testers alike once a POC is announced.

Our content team will be developing an alert for this CVE for future detections.

Microsoft Article: https://msrc-blog.microsoft.com/2020/07/14/july-2020-security-update-cve-2020-1350-vulnerability-in-windows-domain-name-system-dns-server
Workaround and Mitigations: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1350

If you have any questions regarding this vulnerability, please contact us.

Topics from this Article

Microsoft, Windows, Remote Code Execution, CVE, Vulnerability Management

Datashield
Datashield
Official Datashield account for blog content, news, announcements and more. The articles authored include a collaboration between internal staff, specifically the security operations and marketing team.

Related Posts

The Difference Between Cybersecurity & Network Security

The Difference Between Cybersecurity & Network Security

Security Advisory Kaseya VSA

Datashield Security Advisory:

Security Advisory Vulnerability CVE-2021-1675

Datashield Security Advisory: