jojo wrote:Removing the hotfix works great.
It's probably better that you use the other work around of altering the ZA Firewall setting than removing the hotfix.
KB951748 is a hotfix that was released to patch a particularly important "glitch" in the DNS protocol (the actual protocol itself, not Microsoft's Interpretation of it) that could give attackers a very effective way of poisoning your DNS cache and getting you to visit spoofed websites without your even knowing about it.
As the actual details of the vulnerability haven't been released to the public yet, there's no way of knowing exactly HOW the compromise works. Rest assured, it's important enough for most of the large Internet players (MS, Cisco, Sun, etc) to be rapidly developing and releasing patches for it.
http://www.cve.mitre.org/cgi-bin/cvenam ... -2008-1447
Vista and Vista SP1 (x86 and x64) are not affected.