Intrusion PreventionMS.Windows.Fragmented.ICMP.RDP.DoS
Description
This indicates a possible attempt to exploit a Denial of Service vulnerability in the Microsoft Windows kernel.
The vulnerability is in TCP/IP, and is a result of the way that the Windows kernel processes fragmented "router advertisement" ICMP queries. It can be exploited to cause a computer to stop responding and automatically restart.
Affected Products
Microsoft Windows 2000 Service Pack 4
Windows XP Service Pack 2
Windows XP Professional x64 Edition
Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 1
Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition
Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP1 for Itanium-based Systems
Windows Server 2003 with SP2 for Itanium-based Systems
Windows Vista
Windows Vista x64 Edition
Impact
Denial of service.
Recommended Actions
Apply the patch available from the Web site.
http://www.microsoft.com/technet/security/bulletin/ms08-001.mspx
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2020-12-11 | 16.978 |
| ID | 15255 |
| Created | Jan 09, 2008 |
| Updated | Dec 10, 2020 |
| Risk |
|
| CVE ID | CVE-2007-0066 |
| Exploit Prediction Score | 26.24% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | Other |