| VID |
26730 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The Hotfix (MS15-034, 3042553) for 'Vulnerability in HTTP.sys Could Allow Remote Code Execution' has not been applied.
This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sends a specially crafted HTTP request to an affected Windows system.
HTTP.sys Remote Code Execution Vulnerability - CVE-2015-1635 |
| Recommendation |
Apply the appropriate patch(3042553) for your system, as listed in Microsoft Security Bulletin MS15-034 at https://technet.microsoft.com/en-us/library/security/ms15-034
-- OR --
Patches for Windows platforms are also available from the Microsoft Windows Update Web site, http://windowsupdate.microsoft.com. Windows Update detects what version of Windows you are running and offers the appropriate patch. |
| Related URL |
CVE-2015-1635 (CVE) |
| Related URL |
74013 (SecurityFocus) |
| Related URL |
(ISS) |
|
