Microsoft Windows NFS Server Denial Of Service Vulnerability (2790978) Network Vulnerability

Summary

This host is missing an important security update according to Microsoft Bulletin MS13-014.

Impact

Successful exploitation could allow remote attackers to denial of service. Impact Level: System

Solution

Run Windows Update and update the listed hotfixes or download and update mentioned hotfixes in the advisory from the below link, http://technet.microsoft.com/en-us/security/bulletin/ms13-014

Insight

The flaw is due to a NULL pointer dereference error when handling file operations on a read only share and can be exploited to cause the system to stop responding and restart.

Affected

Microsoft Windows Server 2008 R2 Service Pack 2 and prior

References

http://secunia.com/advisories/52138/
http://support.microsoft.com/kb/2790978
http://technet.microsoft.com/en-us/security/bulletin/ms13-014
http://www.securitytracker.com/id/1028129

Updated on 2015-03-25

Severity

Classification

CVE CVE-2013-1281

CVSS	Base Score: 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C

Related Vulnerabilities

.NET JIT Compiler Vulnerability
Microsoft .NET Common Language Runtime Code Execution Vulnerability (974378)
Microsoft Embedded OpenType Font Engine Remote Code Execution Vulnerabilities (961371))
Microsoft .NET Framework Remote Code Execution Vulnerability (2671605)
Microsoft Group Policy Remote Code Execution Vulnerability (3000483)

Microsoft Windows NFS Server Denial of Service Vulnerability (2790978)

Take action and discover your vulnerabilities