Strix
26.1K

CVE-2012-5362

HIGHCVSS 7.5/10EPSS 14.19%

Last modified

CVE-2012-5362 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. The IPv6 implementation in Microsoft Windows 7 and earlier allows remote attackers to cause a denial of service via a flood of ICMPv6 Neighbor Solicitation messages, a different vulnerability than CVE-2010-4669.. EPSS estimates a 14.19% chance of exploitation in the next 30 days.

Description

The IPv6 implementation in Microsoft Windows 7 and earlier allows remote attackers to cause a denial of service via a flood of ICMPv6 Neighbor Solicitation messages, a different vulnerability than CVE-2010-4669.

Metrics

CVSS 3.1
7.5/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Probability
14.19%

96.1th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
MicrosoftWindows 7All versions
MicrosoftWindows Server 2003All versions
MicrosoftWindows VistaAll versions
MicrosoftWindows XpAll versions

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2012-5362?
The IPv6 implementation in Microsoft Windows 7 and earlier allows remote attackers to cause a denial of service via a flood of ICMPv6 Neighbor Solicitation messages, a different vulnerability than CVE-2010-4669.
How severe is CVE-2012-5362?
CVE-2012-5362 has a CVSS score of 7.5/10 (HIGH severity). The EPSS model estimates a 14.19% probability of exploitation in the next 30 days.
How do I fix CVE-2012-5362?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2012-5362?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST