MS.Windows.TCP.Orphaned.Connections.DoS
Description
This indicates a possible attack against a Denial of Services (DoS) vulnerability in the Microsoft Windows TCP stack.
Affected Products
Windows 2000 Service Pack 4
Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP2 for Itanium-based Systems
Windows Vista, its SP1 and its SP2
Windows Vista x64 Edition, its SP1 and its SP2.
Windows Server 2008 for 32-bit Systems and its Service Pack 2
Windows Server 2008 for x64-based Systems and its SP2
Windows Server 2008 for Itanium-based Systems and its SP2
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Apply the patch, available from the website:
http://www.microsoft.com/technet/security/Bulletin/ms09-048.mspx
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |