Computer Security
[EN] securityvulns.ru no-pyccku


Microsoft Network Policy Server DoS
Published:19.01.2015
Source:
SecurityVulns ID:14228
Type:remote
Threat Level:
6/10
Description:Crash on username processing in RADIUS request.
Affected:MICROSOFT : Windows 2003 Server
 MICROSOFT : Windows 2008 Server
 MICROSOFT : Windows 2012 Server
CVE:CVE-2015-0015 (Microsoft Windows Server 2003 SP2, Server 2008 SP2 and R2 SP1, and Server 2012 Gold and R2 allow remote attackers to cause a denial of service (system hang and RADIUS outage) via crafted username strings to (1) Internet Authentication Service (IAS) or (2) Network Policy Server (NPS), aka "Network Policy Server RADIUS Implementation Denial of Service Vulnerability.")
Files: Microsoft Security Bulletin MS15-007 - Important Vulnerability in Network Policy Server RADIUS Implementation Could Cause Denial of Service (3014029)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod