CVE-2013-3182

Опубликовано: 14 авг. 2013

Источник: nvd

CVSS2: 7.8

EPSS Высокий

Описание

The Windows NAT Driver (aka winnat) service in Microsoft Windows Server 2012 does not properly validate memory addresses during the processing of ICMP packets, which allows remote attackers to cause a denial of service (memory corruption and system hang) via crafted packets, aka "Windows NAT Denial of Service Vulnerability."

Ссылки

http://www.us-cert.gov/ncas/alerts/TA13-225A
Third Party Advisory
US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-064
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18199
http://www.us-cert.gov/ncas/alerts/TA13-225A
Third Party Advisory
US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-064
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18199

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*

EPSS

Процентиль: 99%

0.87664

Высокий

7.8 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-84vv-ff89-8p4r

github

больше 3 лет назад