PT-2013-4207 · Microsoft · Windows Rt+6
Published
2013-08-14
·
Updated
2023-12-07
·
CVE-2013-3183
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Microsoft Windows Vista SP2
Microsoft Windows Server 2008 SP2 and R2 SP1
Microsoft Windows 7 SP1
Microsoft Windows 8
Microsoft Windows Server 2012
Microsoft Windows RT
Description
A denial of service issue exists due to improper memory allocation for inbound ICMPv6 packets in the TCP/IP implementation. This allows remote attackers to cause a system hang via crafted packets.
Recommendations
For Microsoft Windows Vista SP2, update to a newer version to mitigate the risk.
For Microsoft Windows Server 2008 SP2 and R2 SP1, update to a newer version to mitigate the risk.
For Microsoft Windows 7 SP1, update to a newer version to mitigate the risk.
For Microsoft Windows 8, update to a newer version to mitigate the risk.
For Microsoft Windows Server 2012, update to a newer version to mitigate the risk.
For Microsoft Windows RT, update to a newer version to mitigate the risk.
As a temporary workaround, consider restricting incoming ICMPv6 packets to minimize the risk of exploitation.
Fix
DoS
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Windows
Windows 7
Windows 8
Windows Rt
Windows Server 2008
Windows Server 2012
Windows Vista