MS.MMC.File.Format.Dos.Vulnerability.MS15-054
Description
The Microsoft Management Console (MMC) is a part of the Windows operating system that provides an interface to configure and monitor a system.
The vulnerability could allow denial of service if a remote, unauthenticated attacker convinces a user to open a share containing a specially crafted .msc file. However, an attacker would have no way of forcing a user to visit the share or view the file.
Affected Products
Windows Vista SP2
Windows 7 SP1
Windows 8
Windows 8.1
Windows Server 2008 SP2
Windows Server 2008 R2 SP1
Windows Server 2012
Windows Server 2012 R2
Impact
This vulnerability could allow an attacker to cause a denial of service condition on a vulnerable system which would disrupt availability.
Recommended Actions
Please download and apply patches as instructed in https://technet.microsoft.com/library/security/MS15-054.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |