4 matches found
KLA10589 Multiple vulnerabilities in Microsoft products
Multiple serious vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions, cause denial of service or obtain sensitive information. Below is a complete list of vulnerabilities 1. Improper memory...
CVE-2015-0015
The CVE-2015-0015 issue affects Windows Server 2003 SP2, Server 2008 SP2 and R2 SP1, and Server 2012 Gold/R2, where crafted username strings sent to IAS/NPS trigger a remote denial of service (system hang/RADIUS outage). Root cause: improper parsing of username queries in NPS/IAS. Impact: DoS; ex...
Microsoft Network Policy Server RADIUS Denial of Service (MS15-007; CVE-2015-0015)
A denial of service vulnerability exists in the Network Policy Server NPS. The vulnerability is due to the way the NPS handles username strings. A remote attacker can exploit this issue by sending a specially crafted username string to the NPS...
MS15-007: Vulnerability in Network Policy Server RADIUS Implementation Could Cause Denial of Service (3014029)
The remote Windows host is affected by a denial of service vulnerability due to a failure to properly parse username queries on an Internet Authentication Service IAS or a Network Policy Server NPS. A remote, unauthenticated attacker, using specially crafted username strings, can exploit this to...