Microsoft Windows IPv6 Denial Of Service Vulnerability (2904659) Network Vulnerability

Summary

This host is missing a important security update according to Microsoft Bulletin MS14-006.

Impact

Successful exploitation will allow attackers to cause denial of service condition. Impact Level: System

Solution

Run Windows Update and update the listed hotfixes or download and update mentioned hotfixes in the advisory from the below link, https://technet.microsoft.com/en-us/security/bulletin/ms14-006

Insight

Flaw is due to incomplete validation of TCP/IP network packets.

Affected

Microsoft Windows 8 x32/x64 Microsoft Windows Server 2012

Detection

Get the vulnerable file version and check appropriate patch is applied or not.

References

http://osvdb.com/103159
http://secunia.com/advisories/56775/
https://support.microsoft.com/kb/2904659
https://technet.microsoft.com/en-us/security/bulletin/ms14-006

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-0254

CVSS	Base Score: 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C

Related Vulnerabilities

Cumulative Security Update for Internet Explorer (961260)
Blended Threat Vulnerability in SearchPath Could Allow Elevation of Privilege (959426)
Microsoft Expression Design Remote Code Execution Vulnerability (2651018)
Cumulative Security Update for Internet Explorer (933566)
Microsoft .NET Common Language Runtime Code Execution Vulnerability (974378)

Microsoft Windows IPv6 Denial of Service Vulnerability (2904659)

Take action and discover your vulnerabilities