7.8

CVE-2015-0015

EPSS 37.24%
Published 13.01.2015 22:59:06
Last modified 12.04.2025 10:46:40
Source secure@microsoft.com
Teams watchlist Login
Open Login

Microsoft Windows Server 2003 SP2, Server 2008 SP2 and R2 SP1, and Server 2012 Gold and R2 allow remote attackers to cause a denial of service (system hang and RADIUS outage) via crafted username strings to (1) Internet Authentication Service (IAS) or (2) Network Policy Server (NPS), aka "Network Policy Server RADIUS Implementation Denial of Service Vulnerability."

Affected products Warnungen 0 Metrics 2 CWE 0 References 7

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Windows Server 2003 Updatesp2

Microsoft ≫ Windows Server 2008 Version- Updatesp2

Microsoft ≫ Windows Server 2008 Versionr2 Updatesp1

Microsoft ≫ Windows Server 2012 Version- Updategold

Microsoft ≫ Windows Server 2012 Versionr2 SwPlatformx64

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	37.24%	0.971

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C

http://secunia.com/advisories/62148

http://www.securityfocus.com/bid/71933

http://www.securitytracker.com/id/1031532

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-007

https://nvd.nist.gov/vuln/detail/CVE-2015-0015

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2015-0015

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2015-0015

EUVD