FAQ
According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability? Successful exploitation of this vulnerability requires an attacker to win a race condition.
MSRC compact vulnerability detail
CVE-2025-24064 · Windows Domain Name Service Remote Code Execution Vulnerability
Use after free in DNS Server allows an unauthorized attacker to execute code over a network.
Signals
Role: DNS Server
Remote Code Execution
Exploited: No
Publicly disclosed: No
Exploitability: Exploitation Less Likely
CWE
Patch Diff
Loading module diff metadata...
Resolved binary override
Use this when the MSRC module name cannot be mapped automatically or the resolved binary looks wrong.
Description
Use after free in DNS Server allows an unauthorized attacker to execute code over a network.
FAQ / Articles
FAQ
How could an attacker exploit this vulnerability? In a network-based attack an attacker sending a dynamic DNS update message with perfect timing to a DNS server could potentially execute code remotely on the target server.
DNS Server Remote Code Execution Vulnerability
Use after free in DNS Server allows an unauthorized attacker to execute code over a network.