Intrusion Prevention

MS.Windows.TCPIP.Stack.DoS

Description

This indicates an attempt to exploit a Denial of Service vulnerability in the Microsoft Windows TCP/IP stack.
The vulnerability results from an error when the TCP/IP stack handles URLs in memory, when URL based Quality of Service (QoS) is enabled. An attacker who successfully exploits this could cause the target system to stop responding and automatically reboot.

Affected Products

Windows Vista Service Pack 2
Windows Vista x64 Edition Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for Itanium-based Systems Service Pack 2
Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack 1
Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for Itanium-based Systems and Windows Server 2008 R2 for Itanium-based Systems Service Pack 1

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply the latest update from the vendor.
Windows Vista Service Pack 2
http://www.microsoft.com/downloads/details.aspx?familyid=114C2835-921A-4D3E-BE91-DFD217FD26A9
Windows Vista x64 Edition Service Pack 2
http://www.microsoft.com/downloads/details.aspx?familyid=0FCEE476-8D7E-49A7-B6EA-89043304A653
Windows Server 2008 for 32-bit Systems Service Pack 2
http://www.microsoft.com/downloads/details.aspx?familyid=C01D9132-AF5F-4039-8195-95F6761F2D0E
Windows Server 2008 for x64-based Systems Service Pack 2
http://www.microsoft.com/downloads/details.aspx?familyid=70797ADB-D693-4102-9E7C-BA1EA8FB07D0
Windows Server 2008 for Itanium-based Systems Service Pack 2
http://www.microsoft.com/downloads/details.aspx?familyid=9BABF81A-8B21-42AE-A65C-F414793516AB
Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack 1
http://www.microsoft.com/downloads/details.aspx?familyid=814BBDFA-7CBC-40E5-8CA3-8FED9D13FF00
Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1
http://www.microsoft.com/downloads/details.aspx?familyid=085EE785-B6AD-4C68-835A-E17BC8F12A53
Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1
http://www.microsoft.com/downloads/details.aspx?familyid=9FD2B4BA-D98E-4AD6-99F2-C471335042D3
Windows Server 2008 R2 for Itanium-based Systems and Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
http://www.microsoft.com/downloads/details.aspx?familyid=93752C8F-5461-4E6F-9CAB-6401B985EF17

CVE References

CVE-2011-1965