PT-2013-3040 · Microsoft · Windows Server 2008 R2+1

Published

2013-02-13

Updated

2020-09-28

CVE-2013-1281

CVSS v2.0

7.1

High

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Windows Server 2008 R2 and R2 SP1 Microsoft Windows Server 2012

Description The issue allows remote attackers to cause a denial of service, resulting in a NULL pointer dereference and system reboot. This occurs when an attacker attempts to rename a file or folder located on a read-only share.

Recommendations For Microsoft Windows Server 2008 R2 and R2 SP1, apply the necessary patch to fix the NULL pointer dereference issue. For Microsoft Windows Server 2012, apply the necessary patch to fix the NULL pointer dereference issue. As a temporary workaround, consider restricting access to read-only shares to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399

Related Identifiers

CVE-2013-1281

Affected Products

Windows Server 2008 R2

Windows Server 2012

PT-2013-3040 · Microsoft · Windows Server 2008 R2+1

CVE-2013-1281

Weakness Enumeration

Related Identifiers

Affected Products

References · 4