4.3
CVE-2012-0152
- EPSS 86.15%
- Veröffentlicht 13.03.2012 21:55:01
- Zuletzt bearbeitet 16.06.2026 23:36:47
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
The Remote Desktop Protocol (RDP) service in Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 allows remote attackers to cause a denial of service (application hang) via a series of crafted packets, aka "Terminal Server Denial of Service Vulnerability."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 86.15% | 0.997 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:P
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
http://www.securitytracker.com/id?1026790
http://www.us-cert.gov/cas/techalerts/TA12-073A.html
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-020
http://www.securityfocus.com/bid/52354
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14626