7.8

CVE-2015-0015

EPSS 37.24%
Veröffentlicht 13.01.2015 22:59:06
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle secure@microsoft.com
Teams Watchlist Login
Unerledigt Login

Microsoft Windows Server 2003 SP2, Server 2008 SP2 and R2 SP1, and Server 2012 Gold and R2 allow remote attackers to cause a denial of service (system hang and RADIUS outage) via crafted username strings to (1) Internet Authentication Service (IAS) or (2) Network Policy Server (NPS), aka "Network Policy Server RADIUS Implementation Denial of Service Vulnerability."

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Windows Server 2003 Updatesp2

Microsoft ≫ Windows Server 2008 Version- Updatesp2

Microsoft ≫ Windows Server 2008 Versionr2 Updatesp1

Microsoft ≫ Windows Server 2012 Version- Updategold

Microsoft ≫ Windows Server 2012 Versionr2 SwPlatformx64

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	37.24%	0.971

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C

http://secunia.com/advisories/62148

http://www.securityfocus.com/bid/71933

http://www.securitytracker.com/id/1031532

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-007

https://nvd.nist.gov/vuln/detail/CVE-2015-0015

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2015-0015

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2015-0015

EUVD