Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2016-0150
HistoryApr 12, 2016 - 11:59 p.m.

CVE-2016-0150

2016-04-1223:59:00
CWE-19
[email protected]
web.nvd.nist.gov
41
cve-2016-0150
http.sys
microsoft windows 10
denial of service
dos
vulnerability
nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.217 Low

EPSS

Percentile

96.4%

JSON

HTTP.sys in Microsoft Windows 10 Gold and 1511 allows remote attackers to cause a denial of service (system hang) via crafted HTTP 2.0 requests, aka “HTTP.sys Denial of Service Vulnerability.”

Related

checkpoint_advisories 1
mskb 3
openvas 1
prion 1
nessus 1
mscve 1
symantec 1
thn 1
kaspersky 1
checkpoint_advisories
checkpoint_advisories
Microsoft HTTP.sys HTTP 2.0 Denial of Service (MS16-049; CVE-2016-0150)
2016-05-10 00:00:00
mskb
mskb
MS16-049: Security update for HTTP.sys: April 12, 2016
2016-04-12 00:00:00
Cumulative update for Windows 10 Version 1511 and Windows Server 2016 Technical Preview 4: April 12, 2016
2016-04-12 07:00:00
Cumulative Update for Windows 10: April 12, 2016
2016-04-12 07:00:00
openvas
openvas
Microsoft Windows 'HTTP.sys' Denial of Service Vulnerability (3148795)
2016-04-13 00:00:00
prion
prion
Denial of service
2016-04-12 23:59:00
nessus
nessus
MS16-049: Security Update for HTTP.sys (3148795)
2016-04-12 00:00:00
mscve
mscve
HTTP.sys Denial of Service Vulnerability
2016-04-12 07:00:00
symantec
symantec
Microsoft Windows 'HTTP.sys' CVE-2016-0150 Denial of Service Vulnerability
2016-04-12 00:00:00
thn
thn
4 Flaws hit HTTP/2 Protocol that could allow Hackers to Disrupt Servers
2016-08-03 20:10:00
kaspersky
kaspersky
KLA10784 Multiple vulnerabilities in Microsoft Windows
2016-04-12 00:00:00

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.217 Low

EPSS

Percentile

96.4%

JSON
Related for CVE-2016-0150
checkpoint_advisories1mskb3openvas1prion1nessus1mscve1symantec1thn1kaspersky1