CVE-2016-3227

EPSS 22.53%
Published 16.06.2016 01:59:29
Last modified 12.04.2025 10:46:40
Source secure@microsoft.com
Teams watchlist Login
Open Login

Use-after-free vulnerability in the DNS Server component in Microsoft Windows Server 2012 Gold and R2 allows remote attackers to execute arbitrary code via crafted requests, aka "Windows DNS Server Use After Free Vulnerability."

Affected products Warnungen 0 Metrics 3 CWE 0 References 5

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Windows Server 2012 Version- Updategold

Microsoft ≫ Windows Server 2012 Versionr2 SwEditiondatacenter

Microsoft ≫ Windows Server 2012 Versionr2 SwEditionessentials

Microsoft ≫ Windows Server 2012 Versionr2 SwEditionstandard

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	22.53%	0.956

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

http://www.securitytracker.com/id/1036095

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-071

https://nvd.nist.gov/vuln/detail/CVE-2016-3227

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2016-3227

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2016-3227

EUVD