← CVECheck
HomeVulnerabilities

CVE-2000-1218 — CRITICAL severity vulnerability (The default configuration for the domain name resolver for M)

The default configuration for the domain name resolver for Microsoft Windows 98, NT 4.0, 2000, and XP sets the QueryIpMatching parameter to 0, which causes Windows to accept DNS updates from hosts that it did not query, which allows remote attackers to poison the DNS cache.

CVE IDCVE-2000-1218
SeverityCRITICAL
CVSS score9.8
CVSS vectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWECWE-346
StatusModified
Published2000-04-14
Last modified2026-04-16
DescriptionThe default configuration for the domain name resolver for Microsoft Windows 98, NT 4.0, 2000, and XP sets the QueryIpMatching parameter to 0, which causes Windows to accept DNS updates from hosts that it did not query, which allows remote attackers to poison the DNS cache.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →