MS.MMC.File.Format.Dos.Vulnerability.MS15-054

description-logoDescription

The Microsoft Management Console (MMC) is a part of the Windows operating system that provides an interface to configure and monitor a system.
The vulnerability could allow denial of service if a remote, unauthenticated attacker convinces a user to open a share containing a specially crafted .msc file. However, an attacker would have no way of forcing a user to visit the share or view the file.

affected-products-logoAffected Products

Windows Vista SP2
Windows 7 SP1
Windows 8
Windows 8.1
Windows Server 2008 SP2
Windows Server 2008 R2 SP1
Windows Server 2012
Windows Server 2012 R2

Impact logoImpact

This vulnerability could allow an attacker to cause a denial of service condition on a vulnerable system which would disrupt availability.

recomended-action-logoRecommended Actions

Please download and apply patches as instructed in https://technet.microsoft.com/library/security/MS15-054.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)