virus logo Intrusion Prevention

MS.Windows.WINS.Server.Remote.Memory.Corruption

description-logoDescription

This indicates an attack attempt against a Memory Corruption in WINS Server in Microsoft Windows Server.
The vulnerability is due to the application improper handling of multiple pending sessions with WINS Replication packet. A remote attacker may be able to exploit this to cause a denial of service condition on the affected system.

affected-products-logoAffected Products

Windows Server 2008
Windows Server 2012
Windows Server 2016

Impact logoImpact

Denial of Service: Remote attackers can crash WINS server.

recomended-action-logoRecommended Actions

Microsoft recommends users using DNS to replace WINS.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 43704
Created Feb 23, 2017
Updated Jul 19, 2017
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Windows
Affected App Other