CVE-2015-0079
Last modified
CVE-2015-0079 is a vulnerability of currently unknown severity. The Remote Desktop Protocol (RDP) implementation in Microsoft Windows 7 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 allows remote attackers to cause a denial of service (memory consumption and RDP outage) by establishing many RDP sessions that do not properly free allocated memory, aka "Remote Desktop Protocol (RDP) Denial of Service Vulnerability.". EPSS estimates a 16.16% chance of exploitation in the next 30 days.
Description
The Remote Desktop Protocol (RDP) implementation in Microsoft Windows 7 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 allows remote attackers to cause a denial of service (memory consumption and RDP outage) by establishing many RDP sessions that do not properly free allocated memory, aka "Remote Desktop Protocol (RDP) Denial of Service Vulnerability."
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Microsoft | Windows 7 | All versions | Sp1 |
| Microsoft | Windows 8 | All versions | — |
| Microsoft | Windows 8.1 | All versions | — |
| Microsoft | Windows Server 2012 | All versions | — |
| Microsoft | Windows Server 2012 | r2 | — |
References
- http://www.securitytracker.com/id/1031892Third Party Advisory, VDB Entry
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-030Patch, Vendor Advisory
- http://www.securitytracker.com/id/1031892Third Party Advisory, VDB Entry
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-030Patch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2015-0079?
How severe is CVE-2015-0079?
How do I fix CVE-2015-0079?
Are you affected by CVE-2015-0079?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST