Severe/Critical vulnerability in Windows DNS. Severe enough that DHS CISA is classifying it a level 10 (out of 10). A quick workaround is mentioned in the Microsoft link below: To work around this vulnerability, make the following registry change to restrict the size of the largest inbound TCP-based DNS response packet that’s allowed: Subkey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DNS\Parameters  Value: TcpReceivePacketSize Type: DWORD  Value data: 0xFF00…

Read More “Windows DNS Server Remote Code Execution Vulnerability” »