Abusing TCP/IP Name Resolution in Windows To Carry Out Phishing Attacks

A vulnerability in the way Window tries to resolves FQDN allows attackers present on the local network to redirect them to a third-party server without needing to take over the DNS server.