Powered by Zoomin Software. For more details please contactZoomin

Flowmon ADS BPATTERNS Description

Table of Contents

SIGRed - description

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
Print
  • Last Updated: May 1, 2026
  • 1 minute read
    • Flowmon Products
    • Flowmon Anomaly Detection System
    • Documentation

Source:

Critical Windows DNS Server vulnerability (CVE-2020-1350) enabling domain controller compromise

SIGRed is a critical security vulnerability that affects Microsoft's Domain Name System (DNS) implementation in Windows Server versions from 2003 to 2019. When attackers successfully exploit this vulnerability, they can crash vulnerable DNS servers or execute arbitrary code on Domain controllers.

Flowmon ADS detects responses from public DNS servers that exhibit patterns consistent with SIGRed exploitation attempts.

SIGRed vulnerability exploit detection in Flowmon ADS
SIGRed vulnerability exploit detection in Flowmon ADS

TitleResults for “How to create a CRG?”Also Available inAlert