CVE-2015-6125

EPSS 59.23%
Published 09.12.2015 11:59:10
Last modified 12.04.2025 10:46:40
Source secure@microsoft.com
Teams watchlist Login
Open Login

Use-after-free vulnerability in the DNS server in Microsoft Windows Server 2008 SP2 and R2 SP1 and Server 2012 Gold and R2 allows remote attackers to execute arbitrary code via crafted requests, aka "Windows DNS Use After Free Vulnerability."

Affected products Warnungen 0 Metrics 2 CWE 0 References 5

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Windows Server 2008 Version- Updatesp2

Microsoft ≫ Windows Server 2008 Versionr2 Updatesp1

Microsoft ≫ Windows Server 2012 Updategold

Microsoft ≫ Windows Server 2012 Versionr2 SwEditiondatacenter

Microsoft ≫ Windows Server 2012 Versionr2 SwEditionessentials

Microsoft ≫ Windows Server 2012 Versionr2 SwEditionstandard

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	59.23%	0.981

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

http://www.securitytracker.com/id/1034323

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-127

https://nvd.nist.gov/vuln/detail/CVE-2015-6125

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2015-6125

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2015-6125

EUVD