Lucene search
K

4 matches found

seebug.org
seebug.org
added 2013/05/17 12:0 a.m.65 views

Microsoft Windows 'HTTP.sys'远程拒绝服务漏洞(CVE-2013-1305)(MS13-039)

BUGTRAQ ID: 59784 CVECAN ID: CVE-2013-1305 Microsoft Windows是微软公司推出的一系列操作系统。 当 HTTP 协议堆栈 HTTP.sys 不正确地处理恶意 HTTP 标头时,Windows Server 2012 和 Windows 8 中存在一个拒绝服务漏洞。成功利用此漏洞的攻击者可能通过向受影响的 Windows 服务器或客户端发送特制 HTTP 标头在 HTTP 协议堆栈中触发一个无限循环。 0 Microsoft Windows Windows Server 2012 Microsoft Windows RT...

7.8CVSS6.3AI score0.54665EPSS
Exploits1
CVE
CVE
added 2013/05/15 1:0 a.m.60 views

CVE-2013-1305

CVE-2013-1305 affects Microsoft Windows HTTP.sys in Windows 8, Windows Server 2012, and Windows RT. The flaw arises when HTTP.sys handles a crafted HTTP header, allowing a remote attacker to trigger an infinite loop in the HTTP header parser and cause a denial-of-service condition on vulnerable s...

7.8CVSS6.4AI score0.54665EPSS
Exploits1References3Affected Software3
Tenable Nessus
Tenable Nessus
added 2013/05/15 12:0 a.m.36 views

MS13-039: Vulnerability in HTTP.sys Could Allow Denial of Service (2829254)

The version of Windows installed on the remote host is potentially affected by a denial of service vulnerability because the HTTP protocol stack HTTP.sys may improperly handle a malicious HTTP header, causing an infinite loop in the HTTP protocol. A remote, unauthenticated attacker could exploit...

7.8CVSS5.6AI score0.54665EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2013/05/15 12:0 a.m.34 views

Microsoft Windows 'HTTP.sys' Denial of Service Vulnerability (2829254)

This host is missing an important security update according to Microsoft Bulletin MS13-039. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.8CVSS5AI score0.54665EPSS
Exploits1References3
Rows per page
Query Builder