Remote code execution vulnerability in Windows DNS (CVE-2020-1350)

On 14 July 2020, Microsoft acknowledged a critical remote code execution vulnerability in Windows Domain Name System (DNS), which could allow an adversary to run arbitrary code.
Alert status
CRITICAL

The Australian Cyber Security Centre strongly recommends users apply the security patch to their Windows DNS servers to prevent an adversary from exploiting this vulnerability.

 

Was this information helpful?

Thanks for your feedback!

 
Optional

Tell us why this information was helpful and we’ll work on making more pages like it

Icon for Report Report a cyber security incident for critical infrastructure Icon for becoming a alerts Get alerts on new threatsAlert Service Icon for becoming a partner Become anACSC partner Icon for reportingReport a cybercrime or cyber security incident
Authorised by the Australian Government, Canberra