Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2016-0037
HistoryFeb 10, 2016 - 11:59 a.m.

CVE-2016-0037

2016-02-1011:59:03
CWE-20
[email protected]
web.nvd.nist.gov
29
cve-2016-0037
microsoft
adfs
denial of service
vulnerability

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.137 Low

EPSS

Percentile

95.7%

JSON

The forms-based authentication implementation in Active Directory Federation Services (ADFS) 3.0 in Microsoft Windows Server 2012 R2 allows remote attackers to cause a denial of service (daemon outage) via crafted data, aka “Microsoft Active Directory Federation Services Denial of Service Vulnerability.”

Affected configurations

NVD
Node
microsoftwindows_server_2012Matchr2datacenter
OR
microsoftwindows_server_2012Matchr2essentials
OR
microsoftwindows_server_2012Matchr2standard

Related

symantec 1
prion 1
cvelist 1
openvas 1
kaspersky 1
nessus 1
nvd 1
symantec
symantec
Microsoft Active Directory Federation Services CVE-2016-0037 Denial of Service Vulnerability
2016-02-09 00:00:00
prion
prion
Design/Logic Flaw
2016-02-10 11:59:00
cvelist
cvelist
CVE-2016-0037
2016-02-10 11:00:00
openvas
openvas
Microsoft Active Directory Federation Services Denial of Service Vulnerability (3134222)
2016-02-10 00:00:00
kaspersky
kaspersky
KLA10752 Denial of service vulnerability in Microsoft Acrtive Directory Federation Services
2016-01-10 00:00:00
nessus
nessus
MS16-020: Security Update for Active Directory Federation Services to Address Denial of Service (3134222)
2016-02-09 00:00:00
nvd
nvd
CVE-2016-0037
2016-02-10 11:59:03

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.137 Low

EPSS

Percentile

95.7%

JSON
Related for CVE-2016-0037
symantec1prion1cvelist1openvas1kaspersky1nessus1nvd1